ri-char/eStrace external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ri-char/eStrace

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ri-char/eStrace)

Close

ri-char / eStraceView on GitHubMore

• External links
• Readme badge

A tool that traces system calls using eBPF

☆269Oct 31, 2024Updated last year

Alternatives and similar repositories for eStrace

Users that are interested in eStrace are comparing it to the libraries listed below

• ri-char / pwatch

  View on GitHub
  A cli tool to install a hardware breakpoint/watchpoint on a process in linux.
  ☆252Jul 6, 2024Updated last year
• null-luo / btrace

  View on GitHub
  btrace：binder_transaction+eBPF+Golang实现通用的Android APP动态行为追踪工具
  ☆202Jun 15, 2024Updated last year
• Abbbbbi / Frida-Seccomp

  View on GitHub
  一个Android通用svc跟踪以及hook方案——Frida-Seccomp
  ☆649May 14, 2024Updated last year
• SeeFlowerX / estrace

  View on GitHub
  基于eBPF的syscall追踪工具，适用于安卓平台
  ☆328Oct 24, 2023Updated 2 years ago
• SeeFlowerX / stackplz

  View on GitHub
  基于eBPF的堆栈追踪工具
  ☆1,373Jan 11, 2026Updated 2 months ago
• maiyao1988 / ebpf-plugin

  View on GitHub
  ☆122Nov 24, 2022Updated 3 years ago
• zhanghecn / luckzh_fnative_monitor

  View on GitHub
  基于 frida 可监控 native 方法调用
  ☆69Jun 16, 2023Updated 2 years ago
• onesss19 / Syscall_intercept_arm64

  View on GitHub
  ☆122Mar 18, 2022Updated 4 years ago
• tiann / eadb

  View on GitHub
  eBPF Android Debug Bridge
  ☆553Mar 30, 2024Updated last year
• xiaotujinbnb / ptrace-seccomp-demo

  View on GitHub
  一个基于ptrace-seccomp简单的重定向openat的demo
  ☆82Dec 14, 2022Updated 3 years ago
• Mrack / TInjector

  View on GitHub
  劫持Zygote在App启动前注入so
  ☆350Jan 22, 2026Updated last month
• lasting-yang / frida-qbdi-tracer

  View on GitHub
  ☆420Mar 17, 2023Updated 3 years ago
• ShinoLeah / eDBG

  View on GitHub
  eBPF-based lightweight debugger for Android
  ☆763Dec 27, 2025Updated 2 months ago
• yanivagman / BPFroid

  View on GitHub
  Trace Android framework API, native libraries, system calls and other events using eBPF
  ☆157Jul 11, 2024Updated last year
• Thehepta / rxposed

  View on GitHub
  ☆388Mar 29, 2025Updated 11 months ago
• reveny / Android-Library-Remap-Hide

  View on GitHub
  Remap a library to avoid detection
  ☆132Feb 1, 2024Updated 2 years ago
• xbyl1234 / android_analysis

  View on GitHub
  a few android analysis tools, jni trace by native hook, Java Object Format to Json for Xposed and Frida
  ☆187Oct 20, 2025Updated 5 months ago
• Mrack / MemDetection

  View on GitHub
  计算内存中的libc.so，libart.so的crc与文件中的对比检测apk是否处于异常环境。
  ☆85Dec 13, 2022Updated 3 years ago
• sanfengAndroid / fake-linker

  View on GitHub
  Modify Android linker to provide loading module and hook function
  ☆465Oct 13, 2025Updated 5 months ago
• Ccccccccvvm / CvmSeccomp

  View on GitHub
  Seccomp + Signal Intercept SVC
  ☆93Aug 18, 2023Updated 2 years ago
• iofomo / abyss

  View on GitHub
  Android system call hook
  ☆229Jan 22, 2025Updated last year
• axhlzy / FridaDebugger

  View on GitHub
  Single-step debugging of native code using frida, stalker, and semaphore
  ☆87Oct 9, 2024Updated last year
• frida / frida-itrace

  View on GitHub
  Instruction tracer powered by Frida
  ☆155Jun 9, 2025Updated 9 months ago
• tcc0lin / awsome-magisk

  View on GitHub
  关于Magisk生态的研究
  ☆161Apr 29, 2024Updated last year
• erfur / linjector-rs

  View on GitHub
  Code injection on Android without ptrace
  ☆283Mar 20, 2024Updated 2 years ago
• michalbednarski / side-strace

  View on GitHub
  Run `strace` on program that is under another debugger
  ☆18Aug 6, 2023Updated 2 years ago
• Ylarod / SignalTracer

  View on GitHub
  A kernel module for tracing signal
  ☆31Jan 17, 2023Updated 3 years ago
• iofomo / binderceptor

  View on GitHub
  A binder interceptor framework for Android
  ☆369Jun 24, 2024Updated last year
• reveny / Android-Native-Import-Hide

  View on GitHub
  A library for hiding and retrieving imports in ELF binaries.
  ☆192Apr 18, 2025Updated 11 months ago
• hackcatml / zygisk-memdump

  View on GitHub
  A zygisk module that dumps so file from process memory
  ☆98Oct 9, 2024Updated last year
• LLeavesG / Frida-Sigaction-Seccomp

  View on GitHub
  Frida-Sigaction-Seccomp实现对Android APP系统调用的拦截
  ☆127Jan 26, 2024Updated 2 years ago
• LLeavesG / eBPFDexDumper

  View on GitHub
  eBPF-Based DexDumper for Android
  ☆373Dec 8, 2025Updated 3 months ago
• TUGOhost / anti_Android

  View on GitHub
  Is a protect Android App anti any attacks and environments.
  ☆356Dec 28, 2023Updated 2 years ago
• Thehepta / Android-Debug-Inject

  View on GitHub
  ☆148Sep 9, 2025Updated 6 months ago
• Ylarod / hardware-breakpoint

  View on GitHub
  Mirror of https://gitee.com/SmartSmallBoy/hardware-breakpoint
  ☆62May 20, 2024Updated last year
• yhnu / op7t

  View on GitHub
  oneplus 7t 自定义内核(for 安卓逆向/外挂分析)
  ☆243Feb 22, 2023Updated 3 years ago
• abcz316 / rwProcMem33

  View on GitHub
  Linux ARM64内核硬件进程内存读写驱动、硬件断点调试驱动。硬件级读写Linux进程内存、硬件级下断点。
  ☆902Dec 4, 2025Updated 3 months ago
• WeiJiLab / kernel-inline-hook-framework

  View on GitHub
  hook or replace arbitary linux/FreeBSD kernel functions in runtime, supporting arm32, arm64, x86, x86_64, riscv
  ☆220Mar 6, 2026Updated 2 weeks ago
• w296488320 / getMacForNetlink

  View on GitHub
  ☆140Dec 28, 2022Updated 3 years ago