Stars
BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more
Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.
Kernel source tree for Raspberry Pi-provided kernel builds. Issues unrelated to the linux kernel should be posted on the community forum at https://forums.raspberrypi.com/
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, T…
tinyproxy - a light-weight HTTP/HTTPS proxy daemon for POSIX operating systems
eBPF-based Security Observability and Runtime Enforcement
Packet, where are you? -- eBPF-based Linux kernel networking debugger
🔥 ByteHook is an Android PLT hook library which supports armeabi-v7a, arm64-v8a, x86 and x86_64.
🔥 ShadowHook is an Android inline hook library which supports thumb, arm32 and arm64.
GNU Libc - Extremely old repo used for research purposes years ago. Please do not rely on this repo.
Expanded version of the Espressif ESP webcam
Patching and hooking the Linux kernel with only a stripped Linux kernel image.
Tool for injecting a shared object into a Linux process
https://gitlab.com/samba-team/samba is the Official GitLab mirror of https://git.samba.org/samba.git -- Merge requests should be made on GitLab (not on GitHub)
Hook function calls by replacing PLT(Procedure Linkage Table) entries.
Hook function calls by inserting jump instructions at runtime
Library for injecting a shared library into a Linux or Windows process
Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
libsinsp, libscap, the kernel module driver, and the eBPF driver sources
Build an .so file to automatically do the android_native_hook work. Supports ARM64 ! With this, tools like Xposed can do android native hook.
hook or replace arbitary linux/FreeBSD kernel functions in runtime, supporting arm32, arm64, x86, x86_64, riscv