Mrack / MemDetectionLinks
计算内存中的libc.so,libart.so的crc与文件中的对比检测apk是否处于异常环境。
☆73Updated 2 years ago
Alternatives and similar repositories for MemDetection
Users that are interested in MemDetection are comparing it to the libraries listed below
Sorting:
- 用于练手的环境检测的demo☆84Updated last year
- Frida-Sigaction-Seccomp实现对Android APP系统调用的拦截☆120Updated last year
- android jni trace for arm64 for magisk module!☆73Updated last month
- 修改app包名,实现随机包名,☆51Updated 3 years ago
- apatch内核模块 用于文件重定向☆60Updated 5 months ago
- frida runtime resolves smali☆85Updated 3 months ago
- 研究内核改机策略☆63Updated last year
- Remap a library to avoid detection☆126Updated last year
- 一个基于ptrace-seccomp简单的重定向openat的demo☆77Updated 2 years ago
- Android aarch64 rootkit☆76Updated 3 weeks ago
- apatch内核模块用于隐藏mountxxx & maps & smaps的指定内容☆55Updated 5 months ago
- this is Android Custom Linker by Android12 LinkerSourcesCode☆44Updated last year
- 检测app是否被frida/xposed注入☆52Updated 4 months ago
- Dynamic java method hook for Android,Implemented by jvmti☆52Updated last year
- 个人专用 ONEPLUS 5 内核,做了一些基础的反调试修改(从 maps 隐藏特定 lib,最完整最正常的 tracerPid 修改措施)☆81Updated 3 years ago
- 关于Magisk生态的研究☆151Updated last year
- This is a tool used to inject so to any app by ptrace.☆86Updated 2 years ago
- Overt是一款功能强大的Android设备安全检测工具☆134Updated 2 weeks ago
- 一个基于uprobe,能同时hook大量用户地址空间函数的kpm内核模块☆154Updated last month
- 自實現Linker的小Demo☆70Updated 2 months ago
- 转换Pxx的vmp文件(check.bin, mw.bin)到.class☆27Updated 2 years ago
- ☆131Updated last month
- ☆49Updated 2 years ago
- 一个用于抹去ptrace注入部分文件特征的apatch内核模块☆43Updated 7 months ago
- A zygisk module that dumps so file from process memory☆90Updated 10 months ago
- 2023 年 羊城杯 ezAndroid dex VMP 恢复工具☆36Updated last year
- ☆84Updated 8 months ago
- btrace:binder_transaction+eBPF+Golang实现通用的Android APP动态行为追踪工具☆183Updated last year
- frida打印java调用栈的详细信息☆39Updated 6 months ago
- a next-generation hooking and reflection framework built for performance, safety, and extensibility.☆185Updated this week