Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bmax121/KernelPatch

Patching and hooking the Linux kernel with only a stripped Linux kernel image.
https://github.com/bmax121/KernelPatch

android-root hijack inline-hook kernel-security kernelpatch syscall-hook

Last synced: 12 days ago
JSON representation

Patching and hooking the Linux kernel with only a stripped Linux kernel image.

Awesome Lists containing this project

README 

        
# KernelPatch



**Patching and hooking the Linux kernel with only stripped Linux kernel image.**



``` shell

 _  __                    _ ____       _       _     

| |/ /___ _ __ _ __   ___| |  _ \ __ _| |_ ___| |__  

| ' // _ \ '__| '_ \ / _ \ | |_) / _` | __/ __| '_ \ 

| . \  __/ |  | | | |  __/ |  __/ (_| | || (__| | | |

|_|\_\___|_|  |_| |_|\___|_|_|   \__,_|\__\___|_| |_|



```



- Obtain all symbol information without source code and symbol information.

- Inject arbitrary code into the kernel. (Static patching the kernel image or Runtime dynamic loading).

- Kernel function inline hook and syscall table hook are provided.

- Additional SU for Android.



If you are using Android, [APatch](https://github.com/bmax121/APatch) would be a better choice.



## Requirement



CONFIG_KALLSYMS=y  



## Supported Versions



Currently only supports arm64 architecture.  



Linux 3.18 - 6.2 (theoretically)  

Linux 6.3+ (not yet adapted)  



## Get Involved



## More Information



[Documentation](./doc/)



## Credits



- [vmlinux-to-elf](https://github.com/marin-m/vmlinux-to-elf): Some ideas for parsing kernel symbols.

- [android-inline-hook](https://github.com/bytedance/android-inline-hook): Some code for fixing arm64 inline hook instructions.

- [tlsf](https://github.com/mattconte/tlsf): Memory allocator used for KPM. (Need another to allocate ROX memory.)



## License



KernelPatch is licensed under the **GNU General Public License (GPL) 2.0** ().