jha / linux-kernel-hookLinks
A small kernel module that can hook arbitrary syscalls on x86_64
☆52Updated 5 years ago
Alternatives and similar repositories for linux-kernel-hook
Users that are interested in linux-kernel-hook are comparing it to the libraries listed below
Sorting:
- ELF packer - x86_64☆72Updated 9 years ago
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆110Updated 5 years ago
- Using ftrace for function hooking in Linux kernel☆272Updated 4 years ago
- a linux kernel function inline hooking library☆30Updated 7 years ago
- Recover 64 bit ELF executables from memory dump☆90Updated 6 years ago
- ELF obfuscator☆67Updated 9 years ago
- Collection of simple anti-debugging tricks for Linux☆56Updated 7 years ago
- linux elf injector for x86 x86_64 arm arm64☆336Updated 7 years ago
- Obfuscates dynamic symbol table☆134Updated 6 years ago
- ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)☆135Updated 7 years ago
- Security Evaluation of Dynamic Binary Instrumentation Engines☆80Updated 6 years ago
- Meltdown/Spectre PoC src collection.☆508Updated 7 years ago
- Runtime Prevention of Return-Oriented Programming Attacks☆82Updated 10 years ago
- ☆87Updated 8 years ago
- A ptrace library for easy syscall injection in Linux.☆177Updated 10 months ago
- Heap analysis tooling for ptmalloc☆45Updated 2 years ago
- linux system call hook framework☆47Updated 6 years ago
- ☆47Updated 6 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)☆186Updated 5 years ago
- Advanced process execution monitoring utility for linux (procmon like)☆85Updated 9 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for ARM (Presented at BlackHat Asia 2018)☆73Updated 6 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆131Updated 7 months ago
- Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)☆37Updated last year
- gdbida - a visual bridge between a GDB session and IDA Pro's disassembler☆181Updated 7 years ago
- Kernel driver to fuzz Hyper-V hypercalls☆137Updated 6 years ago
- A LKM rootkit for most newer kernel versions.☆176Updated 7 years ago
- Sample programs that illustrate how to use control flow integrity with the clang compiler☆105Updated 6 years ago
- An ELF parsing and manipulation library for Python☆74Updated 10 years ago
- Linux based inter-process code injection without ptrace(2)☆250Updated 7 years ago
- Resources About Dynamic Binary Instrumentation and Dynamic Binary Analysis☆134Updated 5 years ago