shubham0d / Immutable-file-linux
A small fun project to protect a file from writing using ftrace hooking.
☆23Updated 2 years ago
Related projects: ⓘ
- Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)☆34Updated last year
- IDA SIG files for multiarch uClibc library☆37Updated 6 years ago
- hotfix hotpatch☆21Updated 6 years ago
- syscall hijacking in 2019☆11Updated 5 years ago
- Dectect syscall hooking using eBPF☆139Updated last year
- ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.☆49Updated last year
- a linux kernel function inline hooking library☆28Updated 6 years ago
- Tools for Linux kernel debugging on Bochs (including symbols, native Bochs debugger and IDA PRO)☆31Updated last year
- A C library for creating and using TCP/IP packets with raw network sockets☆60Updated 2 years ago
- An ELF / PE binary packer written in pure C, made for fun☆74Updated 5 months ago
- Intel PT log analyzer With Parallel Processing And Basic Block Offset Caching Support☆68Updated 10 months ago
- Experiment with Linux system calls (memfd_create, fexecve, fork...)☆19Updated 5 years ago
- An IDA processor for eBPF bytecode☆62Updated 6 months ago
- Collection of simple anti-debugging tricks for Linux☆55Updated 6 years ago
- linux system call hook framework☆46Updated 5 years ago
- Various utilities useful for developers writing BPF tools☆28Updated last year
- Heap analysis tooling for ptmalloc☆43Updated 2 years ago
- small elf loader☆111Updated 3 months ago
- A hacky tool for analysing linux kernel commits☆35Updated last year
- Пример руткита для ядра линукс 5☆19Updated 3 years ago
- Example of using ELF hacking to inject malicious code into a target binary☆21Updated 4 years ago
- Full-VM taint analysis with Xen, Intel(R) Processor Trace and Triton.☆39Updated last year
- 动态二进制插桩框架DynamoRIO通过将程序代 码进行反复插桩(Instrumentation)执行构建了源程序代码与操纵代码之间的桥梁,使DynamoRIO的客户端编写者能够在更高的层面上驾驭原有的程序代码.虽然程序的载体还是被编译成原生的汇编指令集执行,但是不管是原生代…☆31Updated 2 years ago
- Load a statically-linked ELF binary(x86 architecture) without the execve syscall.☆34Updated 4 years ago
- Code injection from Linux kernel to a process☆19Updated last year
- ugly code to check linux kernel memory and dump some internal structures☆31Updated this week
- Dynamic binary translator for x86 binaries☆32Updated last year
- Windows_OS_Internals_Curriculum_Resource_Kit-ACADEMIC☆23Updated 5 years ago
- Recover 64 bit ELF executables from memory dump☆81Updated 5 years ago
- Code injector for ELF binaries (incl. PIE)☆26Updated 7 years ago