GitHub topics: syscall-hooking

Repositories

malefax/Adrishya

Author of Project Adrishya a rootkit which use ftrace mechanism to hook syscall; (write this because God commanded me); work for both x86_64 and arm; CREDIT-(Oleksii Lozovskyi{ilammy})FOUNDER OF FTRACE HOOKING

Language: C - Size: 493 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 14 - Forks: 1

lazypoline/lazypoline

The lazypoline syscall interposer

Language: C++ - Size: 59.6 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 24 - Forks: 3

yasukata/zpoline

system call hook for Linux

Language: C - Size: 230 KB - Last synced at: 2 months ago - Pushed at: 5 months ago - Stars: 550 - Forks: 40

oditynet/syscall-hook

Danger! It is crash your system

Language: C - Size: 14.6 KB - Last synced at: 2 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0

x42en/sysplant

Your syscall factory

Language: Nim - Size: 2.54 MB - Last synced at: 24 days ago - Pushed at: 3 months ago - Stars: 121 - Forks: 12

alphaSeclab/hooking

Resources About Hooking. For All Platforms. Currently 300+ Tools And 600+ Posts.

Size: 109 KB - Last synced at: 4 months ago - Pushed at: about 5 years ago - Stars: 321 - Forks: 75

SilverPlate3/GoodKit

Rootkit for the blue team. Sophisticated and optimized LKM to detect and prevent malicious activity

Language: C++ - Size: 271 KB - Last synced at: 2 months ago - Pushed at: about 1 year ago - Stars: 35 - Forks: 3

nbs32k/inline-syscall

Inline syscalls made for MSVC supporting x64 and WOW64

Language: C++ - Size: 40 KB - Last synced at: about 1 year ago - Pushed at: almost 2 years ago - Stars: 168 - Forks: 30

kn0wl3dge/AutoDetours 📦

This project is no longer maintained. You should check out SledRE (https://github.com/sledre/sledre) which is the continuation of it.

Language: C++ - Size: 21.2 MB - Last synced at: about 1 year ago - Pushed at: over 3 years ago - Stars: 7 - Forks: 2

arm1nt/lkm-rootkit

WIP -- LKM rootkit

Language: C - Size: 8.79 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

sledre/sledre 📦

SledRE is an application allowing to trace syscalls from a lot of Windows PE at the same time.

Language: Python - Size: 15.8 MB - Last synced at: almost 2 years ago - Pushed at: over 3 years ago - Stars: 5 - Forks: 1

sledre/agent 📦

Agent installed in Windows VM and provided sample analysis to SledRE.

Language: C++ - Size: 11.2 MB - Last synced at: almost 2 years ago - Pushed at: over 3 years ago - Stars: 1 - Forks: 0

syscall-hooking 15 syscall-hook 4 linux-kernel 4 syscalls 3 tracing 3 hooking 3 rootkit 2 automation 2 dataset 2 linux-kernel-module 2 detours 2 unpacking 2 cybersecurity 2 windows 2 windows-hooking 1 microsoft 1 linux-hooking 1 ntdll 1 inline-hooking 1 frida-hooking 1 d3dx-hooking 1 art-hooking 1 api-hooking 1 ntdll-unhooking 1 ssdt 1 ssdt-hook 1 syscall-fuzzer 1 syscall-table 1 win32u 1 sandbox 1 unpacker 1 lkm 1 stealth 1 wip 1 sledre 1 ftrace 1 kernel-module 1 arm 1 arm64 1 device-driver 1 ftrace-hooking 1 ftrace-rootkit 1 hacking 1 kprobes 1 linux 1 linux-device-drivers 1 linux-rootkit 1 lkm-hacking 1 lkm-rootkit 1 low-level-programming 1 malware-development 1 rootkit-kernel 1 seccomp 1 syscall-filter 1 syscall-tracing 1 system-security 1 userspace-networking 1 binary-rewriting 1 syscall 1 system-call 1 code-generation 1 edr-evasion 1 hacking-tool 1 offensive-security 1 android-hooking 1

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Repos