dbhi / binhook
A survey of techniques to hook and/or replace functions in executable binaries or shared libraries
☆24Updated 3 years ago
Related projects: ⓘ
- Tool tracing syscalls in a fast way using eBPF linux kernel feature☆98Updated last year
- Heap analysis tooling for ptmalloc☆43Updated 2 years ago
- Function tracer for gcc☆34Updated 7 years ago
- A BPF-based syscall fault injector☆94Updated last year
- ☆47Updated 3 years ago
- Example of how to use the ptrace(2) system call to call a userspace method.☆143Updated 5 years ago
- Various utilities useful for developers writing BPF tools☆28Updated last year
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆121Updated 4 years ago
- Example program using eBPF to log data being based in using shell pipes☆40Updated 3 years ago
- Learning Linux Binary Analysis, published by Packt☆69Updated last year
- Dump page tables on various OSes and analyze them☆26Updated 8 years ago
- UTrace is a tracing utility that leverages eBPF to trace both user space and kernel space functions☆34Updated 2 years ago
- Monitor, rewrite and/or otherwise trap system calls... on Linux/x86{,-64} only, for now.☆59Updated last year
- ☆30Updated 8 years ago
- ☆17Updated 5 years ago
- Examples for Linux ptrace(2)☆134Updated 5 months ago
- Example BPF program with LSM hooks☆31Updated 3 years ago
- KGTP is a comprehensive dynamic tracer for analysing Linux kernel and application (including Android) problems on production systems in r…☆85Updated 7 years ago
- ☆68Updated 5 months ago
- Google coredumper library☆36Updated 4 months ago
- A C++ library that parses debug information encoded in BTF format☆23Updated last year
- A library for GDB (with python support), that adds useful functions to the standard 'gdb' library.☆76Updated 12 years ago
- Open-source release for MemSentry (EuroSys'17)☆45Updated 3 years ago
- A ptrace library for easy syscall injection in Linux.☆165Updated 2 months ago
- Fork of KVM with Virtual Machine Introspection patches☆33Updated 9 months ago
- Example code for changing syscall arguments using ptrace☆46Updated 4 years ago
- a linux kernel function inline hooking library☆28Updated 6 years ago
- Simple hex editor with highlighting for ELF binaries☆52Updated 3 years ago
- Linux syscall() injection☆35Updated 3 years ago
- Intercept a system call using a loadable kernel module.☆55Updated 8 years ago