awesome-repositories.com
Blog
awesome-repositories.com

Entdecke die besten Open-Source-Repositories mit KI-gestützter Suche.

EntdeckenKuratierte SuchenOpen-source alternativesSelf-hosted softwareBlogSitemap
ProjektÜber unsHow we rankPresseMCP-Server
RechtlichesDatenschutzAGB
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

19 Repos

Awesome GitHub RepositoriesDynamic Function Interception

Capturing function calls to execute additional code or modify return values before the original caller receives them.

Distinct from Function Call Tracking: Existing candidates focus on mapping, invocation, or testing spies, not the behavioral interception logic.

Explore 19 awesome GitHub repositories matching software engineering & architecture · Dynamic Function Interception. Refine with filters or upvote what's useful.

Awesome Dynamic Function Interception GitHub Repositories

Finde die besten Repos mit KI.Wir suchen mit KI nach den am besten passenden Repositories.
  • lsposed/lsposedAvatar von LSPosed

    LSPosed/LSPosed

    24,045Auf GitHub ansehen↗

    LSPosed is an Android runtime hooking framework and in-memory code modifier. It functions as a system hooking tool that intercepts and modifies system and application methods in memory to change behavior without altering original installation files. The project provides a standardized interface through the Xposed Module API, allowing for the development of plugins that alter the behavior of the Android operating system and installed applications. The framework covers a range of capabilities including runtime function interception, Android system debugging, and application customization. Thes

    Implements a system to capture function calls and modify return values at runtime.

    Javaandroidxposed
    Auf GitHub ansehen↗24,045
  • steipete/aspectsAvatar von steipete

    steipete/Aspects

    8,436Auf GitHub ansehen↗

    Aspects is an aspect-oriented programming library and method hooking framework designed for intercepting and modifying JavaScript function behavior without altering the original source code. It serves as a runtime logic injector that allows for the addition and removal of executable code wrappers from active functions. The library enables the injection of custom logic before or after methods to change application behavior at runtime. It further provides the ability to intercept method calls to capture or override return values before they reach the caller. The framework manages these interce

    Captures function calls to execute additional code or modify return values before they reach the original caller.

    Objective-Caspectshooksobjective-c
    Auf GitHub ansehen↗8,436
  • std-microblock/chromaticAvatar von std-microblock

    std-microblock/chromatic

    8,315Auf GitHub ansehen↗

    Chromatic is a Chromium runtime modifier and JavaScript engine injector designed to alter the low-level operational characteristics of Chromium and its embedded V8 engine. It functions as a tool for injecting custom logic into the V8 JavaScript engine to change application behavior at runtime. The project provides mechanisms for browser engine instrumentation and V8 runtime manipulation. It enables the modification of the internal execution flow of JavaScript within Chromium-based environments to extend native browser capabilities or bypass standard limitations.

    Intercepts internal engine functions by replacing instruction pointers with jumps to custom logic handlers.

    C++cefchromiuminject
    Auf GitHub ansehen↗8,315
  • rovo89/xposedAvatar von rovo89

    rovo89/Xposed

    7,693Auf GitHub ansehen↗

    Xposed is a native Android runtime hooking framework and instrumentation tool. It provides a modified version of the Android app process binary to intercept and modify the behavior of system and application processes at the binary level. The framework enables Android operating system customization by altering internal function calls and runtime execution flow. It achieves this through native process instrumentation, allowing for the modification of functionality without altering original application files. The tool covers several low-level capabilities, including native library injection and

    Redirects execution flow from original system functions to custom handlers using native memory manipulation.

    C++androidxposed
    Auf GitHub ansehen↗7,693
  • r0ysue/r0captureAvatar von r0ysue

    r0ysue/r0capture

    7,674Auf GitHub ansehen↗

    r0capture is a tool for intercepting network traffic from Android applications. It serves as a traffic interceptor, packet sniffer, and client certificate exporter used to analyze application-layer communication on Android devices. The project provides mechanisms to bypass SSL pinning and certificate validation, allowing the decryption of encrypted traffic without modifying device trust stores. It also enables the extraction of client-side certificates from application memory for saving to local device storage. Captured network data is serialized into PCAP files to support offline protocol a

    Captures plaintext network data by intercepting specific sending and receiving functions at runtime.

    Python
    Auf GitHub ansehen↗7,674
  • traceloop/openllmetryAvatar von traceloop

    traceloop/openllmetry

    7,202Auf GitHub ansehen↗

    OpenLLMetry is an OpenTelemetry-based observability framework and instrumentation library for generative AI applications. It provides toolsets for tracing and monitoring large language model workflows, capturing telemetry from model providers, agent frameworks, and vector databases using standardized semantic conventions. The project distinguishes itself by providing a specialized evaluation and experimentation suite that associates user feedback and prompt version hashes with specific execution traces. It includes a system for tracking model reasoning paths and enforcing security guardrails

    Injects monitoring logic around AI library calls to automatically record inputs, outputs, and token usage.

    Python
    Auf GitHub ansehen↗7,202
  • microsoft/detoursAvatar von microsoft

    microsoft/Detours

    6,303Auf GitHub ansehen↗

    Detours is a library for intercepting Win32 API calls and redirecting function calls at runtime on Windows, enabling binary-level instrumentation without requiring access to the original source code. It functions as an API hooking library and binary instrumentation toolkit, allowing developers to monitor or modify the behavior of compiled Windows binaries by hooking into their function execution paths. The project achieves this through detour-based function interception, where the first few instructions of a target function are replaced with a jump to a user-supplied detour function, while pr

    Replaces function entry instructions with jumps to detour functions, preserving original bytes for trampoline calls.

    C++hacktoberfestmicrosoft
    Auf GitHub ansehen↗6,303
  • substack/tapeAvatar von substack

    substack/tape

    5,800Auf GitHub ansehen↗

    Tape ist ein JavaScript-Testframework und eine Assertion-Bibliothek, die als Test-Runner für Node.js- und Browser-Umgebungen dient. Es implementiert das Test Anything Protocol, um ein standardisiertes, maschinenlesbares Format für Testergebnisse bereitzustellen. Das Projekt fungiert als plattformübergreifendes Test-Harness, das es ermöglicht, dieselben Testsuiten sowohl in server- als auch in clientseitigen Umgebungen auszuführen und dabei ein konsistentes Ausgabeprotokoll beizubehalten. Zu den Funktionen gehören die Validierung von Wertgleichheit und Wahrheitswerten, die Überprüfung der Exception-Behandlung sowie die Koordination asynchroner Workflows. Das Framework bietet zudem Tools zur Verwaltung von Test-Lebenszyklen, zum Definieren benannter Testfälle und zum Erfassen von Funktionsaufrufen oder Eigenschaftszugriffen. Die Kommandozeilenschnittstelle unterstützt glob-basiertes Test-Discovery, Modul-Preloading sowie die Möglichkeit, bestimmte Dateien oder Ordner von der Ausführung auszuschließen.

    Implements mechanisms to capture function calls and arguments for test verification.

    JavaScript
    Auf GitHub ansehen↗5,800
  • zhkl0228/unidbgAvatar von zhkl0228

    zhkl0228/unidbg

    5,028Auf GitHub ansehen↗

    unidbg is a framework for emulating and debugging ARM32 and ARM64 native binaries on a host machine. It serves as an Android and iOS binary debugger and native library emulator, allowing for the execution of native code without the need for physical hardware. The project distinguishes itself through a native function hooking framework and a Model Context Protocol debugging tool that exposes emulator state to AI assistants for automated binary analysis. It also includes a specialized memory analyzer for tracking guest-side allocations and identifying leaks in native binaries. The toolset cove

    Implements dynamic function interception by overwriting native instructions to redirect execution flow.

    Javaandroidcapstonedebugger
    Auf GitHub ansehen↗5,028
  • jmpews/dobbyAvatar von jmpews

    jmpews/Dobby

    4,754Auf GitHub ansehen↗

    Dobby ist ein dynamisches Funktions-Hooking-Framework und ein Tool zur Binärinstrumentierung, das darauf ausgelegt ist, Funktionsaufrufe in kompilierten Binärdateien abzufangen und umzuleiten. Es dient als plattform- und architekturübergreifende Bibliothek, die eine einheitliche Schnittstelle zur Änderung des Programmablaufs über verschiedene Betriebssysteme und CPU-Architekturen hinweg bietet. Die Bibliothek ermöglicht Low-Level-Binärinstrumentierung und Laufzeit-Anwendungs-Instrumentierung durch das Injizieren benutzerdefinierter Handler in laufende Prozesse. Sie wird für Software-Reverse-Engineering verwendet, um den Datenfluss und die Logik in Echtzeit zu beobachten, indem interne Funktionen gehookt werden. Das Framework deckt Binär-Patching, Laufzeit-Symbolauflösung und die Generierung dynamischer Trampolines ab. Es verwaltet plattformspezifische Speicherschutzmechanismen und bildet generische Hook-Anfragen auf architekturspezifische Opcodes ab, um die Ausführung via instruktionsbasiertem Hooking umzuleiten.

    Implements a low-level framework for intercepting and redirecting function calls in compiled binaries.

    C++hookhook-framework
    Auf GitHub ansehen↗4,754
  • spulec/freezegunAvatar von spulec

    spulec/freezegun

    4,517Auf GitHub ansehen↗

    Freezegun ist eine Python-Time-Mocking-Bibliothek und ein System-Clock-Emulator, der dazu verwendet wird, die Systemuhr auf ein festes Datum und eine feste Uhrzeit einzufrieren. Sie dient als Test-Utility, um sicherzustellen, dass zeitabhängige Logik während der Softwareverifizierung konsistente und vorhersagbare Ergebnisse liefert. Die Bibliothek bietet einen Asyncio-kompatiblen Mock, der reale monotone Uhrwerte bewahrt, um zu verhindern, dass Event-Loops hängen bleiben, während andere Systemzeitfunktionen eingefroren bleiben. Sie unterstützt die Simulation des Zeitverlaufs durch manuelles Vorrücken der Uhr, Springen zu bestimmten Daten oder die Verwendung einer tickenden Uhr-Simulation, die die Zeit automatisch zwischen Aufrufen inkrementiert. Das Tool enthält eine Mocking-Ausschlussliste, um zu verhindern, dass spezifische Bibliotheken abgefangen werden, wodurch sichergestellt wird, dass interne Abhängigkeiten und Drittanbieter-Integrationen stabil bleiben.

    Intercepts calls to the datetime and time modules to route them to a central mocked state.

    Python
    Auf GitHub ansehen↗4,517
  • sadanandpai/javascript-code-challengesAvatar von sadanandpai

    sadanandpai/javascript-code-challenges

    4,451Auf GitHub ansehen↗

    Dieses Repository ist eine Sammlung von JavaScript-Coding-Challenges und ein umfassender Interview-Leitfaden. Es bietet Referenzimplementierungen und pädagogische Beispiele, die Entwicklern helfen sollen, Sprachgrundlagen zu beherrschen und sich auf technische Interviews vorzubereiten. Das Projekt deckt eine breite Palette spezialisierter Implementierungen ab, darunter funktionale Programmiermuster wie Currying und partielle Anwendung sowie asynchrone Muster für die Nebenläufigkeitskontrolle. Es enthält zudem praktische Beispiele für die Manipulation des Document Object Models und die Implementierung gängiger Datenstrukturen wie Stacks und Queues. Die Sammlung umfasst fortgeschrittene Sprachfeatures, Implementierungen von Designmustern und die Manipulation von Datenstrukturen. Sie adressiert einen Bereich, der asynchrone Programmierung, DOM-Interaktion, objektorientierte Erzeugungsmuster und Low-Level-Primitive umfasst.

    Uses JavaScript proxies to intercept and monitor function calls without modifying original source code.

    MDXchallengescoding-interviewfrontend
    Auf GitHub ansehen↗4,451
  • praydog/reframeworkAvatar von praydog

    praydog/REFramework

    4,423Auf GitHub ansehen↗

    REFramework is a runtime modding framework for games built on the RE Engine, providing a C# plugin system with typed proxy code generation, a Lua scripting interface, an ImGui-based UI system, a runtime debugging toolkit, and a VR integration layer. At its core, it intercepts and modifies internal game engine functions and state at runtime through hooking and scripting APIs, enabling deep inspection and manipulation of live game objects. The framework distinguishes itself through typed proxy code generation that auto-creates C# interfaces from the game's type database, giving compile-time saf

    Hooks into game engine methods at runtime to intercept, inspect, and modify function calls.

    C++cmkrcppdmc5
    Auf GitHub ansehen↗4,423
  • x64dbg/scyllahideAvatar von x64dbg

    x64dbg/ScyllaHide

    4,167Auf GitHub ansehen↗

    ScyllaHide is an anti-debugger bypass plugin and reverse engineering tool designed to hide a debugger from a target application. It functions as a user-mode API hooking library and DLL injection framework that prevents programs from detecting and closing themselves when being analyzed. The project enables malware analysis and the study of protected software by neutralizing security defenses. It achieves this by intercepting and modifying system library responses to deceive applications about their execution environment. The utility employs several technical methods to maintain stealth, inclu

    Uses detour-based inline API hooking to intercept and modify system calls.

    C++
    Auf GitHub ansehen↗4,167
  • hyperdbg/hyperdbgAvatar von HyperDbg

    HyperDbg/HyperDbg

    3,885Auf GitHub ansehen↗

    HyperDbg is a hardware-assisted kernel-mode debugging platform that leverages virtualization to monitor and control system execution. By utilizing hypervisor-level primitives, it enables deep system analysis and instrumentation without relying on standard operating system debugging interfaces. The framework provides a comprehensive environment for inspecting both kernel and user-mode processes, allowing for granular control over execution flow and system state. The project distinguishes itself through a transparent debugging layer designed to remain invisible to the target environment. It emp

    Hooks specific system or application functions to capture arguments and execution state for analysis.

    Cbinary-analysisdebugdebugger
    Auf GitHub ansehen↗3,885
  • obgnail/typora_pluginAvatar von obgnail

    obgnail/typora_plugin

    3,837Auf GitHub ansehen↗

    This project is a JavaScript-based plugin framework for the Typora markdown editor. It provides a development platform to integrate custom functional logic, UI elements, and keyboard shortcuts into the editor environment. The framework distinguishes itself by offering a JSON-RPC remote interface, allowing external programs to control the editor and trigger plugin functions. It also includes a dedicated publishing system to export and upload markdown documents to external blogging platforms via API requests. The project covers a wide range of capabilities, including editor workflow automation

    Implements a system for intercepting internal software functions to modify arguments or return values via hooks.

    JavaScriptelectronhijackingmarkdown
    Auf GitHub ansehen↗3,837
  • premake/premake-coreAvatar von premake

    premake/premake-core

    3,566Auf GitHub ansehen↗

    Premake is a build system generator and cross-platform build configuration tool. It functions as a scripting engine that transforms scripted workspace definitions into native project files for multiple build toolsets and compilers. Additionally, it can generate JSON-formatted compilation databases for use with language servers and static analysis tools. The project distinguishes itself through a programmable runtime that allows for internal function hooking and the interception of build logic. This extensibility enables users to create custom toolset generators, implement modular extensions f

    Provides a mechanism to intercept internal functions and modify the project generation sequence at runtime.

    Cchacktoberfestlua
    Auf GitHub ansehen↗3,566
  • crimera/pikoAvatar von crimera

    crimera/piko

    2,716Auf GitHub ansehen↗

    Piko is a collection of specialized Android utilities designed for binary patching, user interface customization, media downloading, and application debugging. It functions as an APK modification framework that alters application metadata and binary resources to modify internal logic and bypass version locks. The project differentiates itself through deep application modification capabilities, including bytecode-level instruction patching, DEX file manipulation, and a dynamic hooking engine. It enables the overriding of resource files and the injection of permissions via the application manif

    Features a dynamic hooking engine that intercepts function calls at runtime to redirect logic.

    Javamorphemorphe-patches
    Auf GitHub ansehen↗2,716
  • sebaxakerhtc/rdpwrapAvatar von sebaxakerhtc

    sebaxakerhtc/rdpwrap

    2,515Auf GitHub ansehen↗

    rdpwrap is a set of system utilities and services designed to enable, configure, and manage remote desktop protocol access and video compression settings. It functions as a service and manager that allows remote desktop connections on operating system versions where the feature is restricted or disabled by the vendor. The project provides tools to override system-level restrictions for remote access and activate remote desktop protocol services on unsupported versions. It includes a configuration tool for managing H.264 video compression and encoding settings to balance visual quality, networ

    Implements dynamic function interception to redirect operating system execution flow for enabling restricted features.

    Pascal
    Auf GitHub ansehen↗2,515
  1. Home
  2. Software Engineering & Architecture
  3. Dynamic Function Interception

Unter-Tags erkunden

  • Detour-Based InterceptionsReplaces the first few instructions of a target function with a jump to a user-supplied detour function. **Distinct from Dynamic Function Interception:** Distinct from Dynamic Function Interception: uses a specific detour technique that preserves original bytes for trampoline calls.
  • Dynamic Library InterceptorsTools that override library functions by preloading custom dynamic libraries to hijack execution flow. **Distinct from Dynamic Function Interception:** Distinct from Dynamic Function Interception: specifically focuses on library preloading and dynamic linker hijacking.
  • Thread-Safe Function InterceptionExecuting hook logic across multiple engine threads without blocking the execution path. **Distinct from Dynamic Function Interception:** Specifies non-blocking, multi-threaded execution of hooks rather than simple behavioral interception.