Patching and hooking the Linux kernel with only a stripped Linux kernel image.
-
Updated
Feb 17, 2025 - C
#
syscall-hook
Here are 16 public repositories matching this topic...
system call hook for Linux
-
Updated
Jan 6, 2025 - C
Inline syscalls made for MSVC supporting x64 and WOW64
microsoft windows syscalls syscall-fuzzer ssdt syscall-table ntdll syscall-hook ssdt-hook syscall-hooking ntdll-unhooking win32u
-
Updated
Jul 10, 2023 - C++
System Call Hook for ARM64
-
Updated
Jan 25, 2025 - C
Advanced process execution monitoring utility for linux (procmon like)
c linux hooks kernel kernel-module linux-kernel process-monitor syscalls syscall-table execve procmon linux-process-monitor syscall-hook linux-procmon
-
Updated
Mar 4, 2016 - C
An example rootkit that gives a userland process root permissions
c linux kernel proof-of-concept kernel-module rootkit linux-kernel linux-shell lkm root-privileges syscall syscall-table lkm-rootkit syscall-hook
-
Updated
Oct 17, 2019 - C
A system call interception tool
-
Updated
Dec 9, 2024 - Shell
A Kernel module to break the kernel read-only to modify the syscall_table purpose (only in the Linux Arm64 6.6 Kernel test runs properly).
-
Updated
Feb 2, 2025 - C
System call interception in linux-kernel module (kernel 2.6.34.7-61.fc13.x86_64)
-
Updated
Oct 19, 2023 - C
HiddenGhost is an new solution for find system call table with support for 5.7x kernels +
rootkit syscalls linux-kernel-module lkm syscall linux-kernel-hacking linux-rootkit lkm-rootkit syscall-hook
-
Updated
Jun 25, 2024 - C
Enumerate which window API calls are hooked by an EDR using inline patching technique
-
Updated
Sep 27, 2022 - C++
hodgepodge
-
Updated
Apr 26, 2022 - Vim Script
Some custom Linux kernel modules written for own purposes or just as exercises
-
Updated
Nov 10, 2023 - C
Kernel space drivers(LKM) to intecept, monitor and manipulate system calls in android systems
-
Updated
Oct 7, 2024 - C
-
Updated
Nov 6, 2019 - C
Improve this page
Add a description, image, and links to the syscall-hook topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the syscall-hook topic, visit your repo's landing page and select "manage topics."