BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

Using Zygisk to dump il2cpp data at runtime

基于eBPF的堆栈追踪工具

dex-vm used to protect the android classes.dex file

eBPF-based lightweight debugger for Android

《安卓Frida逆向与抓包实战》随书附件

拼多多事件的脱壳后的部分代码

eBPF-Based DexDumper for Android

Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)

IoT安全教程

Using ftrace for function hooking in Linux kernel

基于IDAPython的二进制漏洞检测脚本库，对IDA生成的反汇编文件进行静态分析，并以XML形式报告可能存在的漏洞隐患点。Based on the binary vulnerability detection script library of IDAPYTHON, the disassembly file generated by IDA is static analyzed and t…

PoC for iOS, macOS, iPadOS (DoS)