ri-char / eStrace
A tool that traces system calls using eBPF
☆235Updated 4 months ago
Alternatives and similar repositories for eStrace:
Users that are interested in eStrace are comparing it to the libraries listed below
- 基于eBPF的syscall追踪工具,适用于安卓平台☆318Updated last year
- A cli tool to install a hardware breakpoint/watchpoint on a process in linux.☆209Updated 8 months ago
- btrace:binder_transaction+eBPF+Golang实现通用的Android APP动态行为追踪工具☆162Updated 9 months ago
- Trace Android framework API, native libraries, system calls and other events using eBPF☆88Updated 8 months ago
- DexDumper based eBPF on Android Platform☆108Updated 2 months ago
- linux kernel inline hook☆122Updated 2 years ago
- A dynamic dex dumper, implemented in rust, no frida.☆130Updated 2 years ago
- Android system call hook☆192Updated 2 months ago
- eBPF-based lightweight debugger for Android☆330Updated this week
- ☆117Updated 2 years ago
- eBPF Android Debug Bridge☆498Updated last year
- 劫持Zygote在App启动前注入so☆271Updated 6 months ago
- eBPF安全开发、安卓系统与内核定制、Frida源码分析与对抗、沙箱开发等课程☆241Updated last month
- Dynamic java method hook for Android,Implemented by jvmti☆18Updated last year
- android memory access trace utility powered by frida framework☆235Updated 2 years ago
- deobfuse compiler☆214Updated 4 years ago
- 关于Magisk生态的研究☆129Updated 11 months ago
- Automatically de-obfuscate ollvm and generate binaries☆107Updated 3 years ago
- oneplus 7t 自定义内核(for 安卓逆向/外挂分析)☆231Updated 2 years ago
- hook or replace arbitary linux kernel functions in runtime, supporting arm32, arm64, x86, x86_64☆182Updated last month
- Frida-Sigaction-Seccomp实现对Android APP系统调用的拦截☆101Updated last year
- Code injection on Android without ptrace☆231Updated last year
- 一个Android通用svc跟踪以及hook方案——Frida-Seccomp☆587Updated 10 months ago
- ☆115Updated 3 years ago
- IDA Frida Plugin for tracing something interesting.☆281Updated 2 weeks ago
- Open/HarmonyOS abc file parser and decompiler☆81Updated 6 months ago
- ☆73Updated 3 months ago
- smali trace☆163Updated 2 years ago
- ☆351Updated 2 weeks ago
- 一个IDA插件,利用frida-stalker在加载so时打印出所有函数调用,解决frida-trace无法在so加载时trace的问题☆152Updated 3 months ago