WeiJiLab / kernel-inline-hook-frameworkLinks
hook or replace arbitary linux kernel functions in runtime, supporting arm32, arm64, x86, x86_64
☆191Updated last week
Alternatives and similar repositories for kernel-inline-hook-framework
Users that are interested in kernel-inline-hook-framework are comparing it to the libraries listed below
Sorting:
- linux kernel inline hook☆126Updated 2 years ago
- Trace Android framework API, native libraries, system calls and other events using eBPF☆100Updated 11 months ago
- deobfuse compiler☆214Updated 4 years ago
- Change vermagic and CRCs of a Linux Kernel Module☆52Updated 6 years ago
- A cli tool to install a hardware breakpoint/watchpoint on a process in linux.☆225Updated 11 months ago
- System Call Hook for ARM64☆157Updated last week
- ☆35Updated last month
- Loadable Kernel Module for Android☆75Updated 5 years ago
- silent syscall hooking without modifying sys_call_table/handlers via patching exception handler☆131Updated last year
- Do something to fit android aarch64 to develop ebpf programs using libbpf-bootstrap framework☆36Updated last year
- break ollvm.☆104Updated last month
- ollvm, base on llvm-clang 18.x☆80Updated last year
- A tool that traces system calls using eBPF☆246Updated 7 months ago
- Kernel mode to user mode so injection☆91Updated 4 years ago
- system call hooking on arm64 linux via a variety of methods☆50Updated 3 years ago
- Code injection on Android without ptrace☆246Updated last year
- Container and system event tracing using eBPF☆33Updated 5 months ago
- Android system call hook☆206Updated 5 months ago
- A step-by-step tutorial for building an LLVM sample pass☆198Updated 2 years ago
- btrace:binder_transaction+eBPF+Golang实现通用的Android APP动态行为追踪工具☆177Updated last year
- 笔者在一款基于LLVM编译器架构的retdec开源反编译器工具的基础上,融合了klee符号执行工具,通过符号执行(Symbolic Execution)引擎动态模拟反编译后的llvm的ir(中间指令集)运行源程序的方法,插桩所有的对x86指令集的thiscall类型函数对t…☆217Updated 3 years ago
- BTFHub, but for Android☆37Updated last year
- Shared Library Injector on Android☆151Updated 5 years ago
- DexDumper based eBPF on Android Platform☆188Updated 5 months ago
- Syscall table hook frame in Android kernel for arm and arm64☆82Updated 8 years ago
- ☆68Updated 2 years ago
- ☆58Updated 11 months ago
- PLCT实验室维护的ollvm分支。原始代码来自于 https://github.com/obfuscator-llvm/obfuscator 移植到了最新的 LLVM 上。☆170Updated 2 years ago
- Automatically de-obfuscate ollvm and generate binaries☆112Updated 3 years ago
- Malicious use of ELF such as .so inject, func hook and so on.☆75Updated 8 years ago