Binder Trace is a tool for intercepting and parsing Android Binder messages. Think of it as "Wireshark for Binder".
☆741Sep 11, 2025Updated 6 months ago
Alternatives and similar repositories for binder-trace
Users that are interested in binder-trace are comparing it to the libraries listed below
Sorting:
- btrace:binder_transaction+eBPF+Golang实现通用的Android APP动态行为追踪工具☆200Jun 15, 2024Updated last year
- A binder interceptor framework for Android☆369Jun 24, 2024Updated last year
- Code injection on Android without ptrace☆283Mar 20, 2024Updated last year
- Android system call hook☆228Jan 22, 2025Updated last year
- 基于eBPF的堆栈追踪工具☆1,373Jan 11, 2026Updated 2 months ago
- ☆137May 1, 2023Updated 2 years ago
- ☆175Jun 27, 2025Updated 8 months ago
- 劫持Zygote在App启动前注入so☆350Jan 22, 2026Updated last month
- Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mit…☆100Jan 21, 2024Updated 2 years ago
- eBPF-based lightweight debugger for Android☆761Dec 27, 2025Updated 2 months ago
- This is a dynamic instrumentation tool that can inject xposed module into any appliation on rooted Android devices.☆159Feb 4, 2026Updated last month
- Instruction tracer powered by Frida☆154Jun 9, 2025Updated 9 months ago
- Single-step debugging of native code using frida, stalker, and semaphore☆87Oct 9, 2024Updated last year
- Human-friendly cross-platform system call tracing and hooking library based on Frida's Stalker☆356Jul 21, 2023Updated 2 years ago
- Significant security enchancements of recent major Android versions.☆186Jul 10, 2025Updated 8 months ago
- A Frida based tool that traces usage of the JNI API in Android apps.☆1,817Jul 18, 2023Updated 2 years ago
- Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel …☆343Apr 12, 2023Updated 2 years ago
- Injects frida gadget using zygisk to bypass anti-tamper checks.☆927Oct 18, 2025Updated 5 months ago
- Android 14 kernel exploit for Pixel7/8 Pro☆545Apr 23, 2024Updated last year
- 一个Android通用svc跟踪以及hook方案——Frida-Seccomp☆649May 14, 2024Updated last year
- 计算内存中的libc.so,libart.so的crc与文件中的对比检测apk是否处于异常环境。☆85Dec 13, 2022Updated 3 years ago
- ☆54Jul 11, 2023Updated 2 years ago
- Mobile Edge-Dynamic Unified Security Analysis☆2,197Mar 11, 2026Updated last week
- LLEF is a plugin for LLDB to make it more useful for RE and VR☆465Feb 27, 2026Updated 2 weeks ago
- A Dynamic Binary Instrumentation framework based on LLVM.☆1,742Feb 20, 2026Updated 3 weeks ago
- A tool that traces system calls using eBPF☆269Oct 31, 2024Updated last year
- ☆59Aug 30, 2023Updated 2 years ago
- ☆86Sep 19, 2024Updated last year
- Android assembly instruction tracing tool☆146Apr 17, 2025Updated 11 months ago
- 研究内核改机策略☆70Mar 13, 2024Updated 2 years ago
- 关于Magisk生态的研究☆161Apr 29, 2024Updated last year
- Frida-based tracer for easier reverse-engineering on Android, iOS, Linux, Windows and most related architectures.☆582Nov 5, 2025Updated 4 months ago
- Frida-Sigaction-Seccomp实现对Android APP系统调用的拦截☆127Jan 26, 2024Updated 2 years ago
- Bad Spin: Android Binder Privilege Escalation Exploit (CVE-2022-20421)☆283May 27, 2023Updated 2 years ago
- PoC and writeup for bypassing the initial patch of CVE-2024-0044, Android run-as any app vulnerability allowing privilege escalation from…☆171Sep 30, 2024Updated last year
- A Linux kernel IPC firewall and logger for Android and Binder☆145Feb 12, 2020Updated 6 years ago
- eBPF Android Debug Bridge☆553Mar 30, 2024Updated last year
- Modify Android linker to provide loading module and hook function☆465Oct 13, 2025Updated 5 months ago
- eBPF-Based DexDumper for Android☆373Dec 8, 2025Updated 3 months ago