Mrack / MemDetectionLinks
计算内存中的libc.so,libart.so的crc与文件中的对比检测apk是否处于异常环境。
☆70Updated 2 years ago
Alternatives and similar repositories for MemDetection
Users that are interested in MemDetection are comparing it to the libraries listed below
Sorting:
- 用于练手的环境检测的demo☆81Updated last year
- Frida-Sigaction-Seccomp实现对Android APP系统调用的拦截☆111Updated last year
- apatch内核模块 用于文件重定向☆48Updated 2 months ago
- frida runtime resolves smali☆81Updated 2 weeks ago
- 一个基于ptrace-seccomp简单的重定向openat的demo☆71Updated 2 years ago
- Remap a library to avoid detection☆116Updated last year
- 研究内核改机策略☆59Updated last year
- 修改app包名,实现随机包名,☆48Updated 2 years ago
- ☆111Updated this week
- 关于Magisk生态的研究☆136Updated last year
- frida打印java调用栈的详细信息☆39Updated 3 months ago
- 自實現Linker的小Demo☆66Updated 11 months ago
- frida dump android elf, support spawn and attach mode☆77Updated last year
- ☆46Updated 2 years ago
- 个人专用 ONEPLUS 5 内核,做了一些基础的反调试修改(从 maps 隐藏特定 lib,最完整最正常的 tracerPid 修改措施)☆80Updated 3 years ago
- A zygisk module that dumps so file from process memory☆72Updated 7 months ago
- ☆39Updated last month
- ☆79Updated 5 months ago
- 2023 年 羊城杯 ezAndroid dex VMP 恢复工具☆35Updated last year
- with this repo you can bypass libpairipcore tamper and signature protection☆39Updated last month
- This is a tool used to inject so to any app by ptrace.☆80Updated 2 years ago
- ☆66Updated 2 months ago
- Dynamic java method hook for Android,Implemented by jvmti☆24Updated last year
- Android aarch64 kernel driver module providing efficient memory operations, touch simulation and IPC. Features include fast memory remapp…☆48Updated 2 months ago
- Mirror of https://gitee.com/SmartSmallBoy/hardware-breakpoint☆51Updated last year
- 转换Pxx的vmp文件(check.bin, mw.bin)到.class☆28Updated 2 years ago
- FunELF(基于Xposed实现的SO脱壳机,用于还原内存中释放的SO文件。)☆54Updated last year
- A Kernel module to break the kernel read-only to modify the syscall_table purpose (only in the Linux Arm64 6.6 Kernel test runs properly)…☆24Updated 3 months ago
- 一 个用于抹去ptrace注入部分文件特征的apatch内核模块☆28Updated 4 months ago
- ☆49Updated 2 years ago