5 repository-uri
Altering program execution by modifying code directly in volatile memory rather than on disk.
Distinct from Application Binary Modifications: Focuses on the volatile memory resident nature of the modification, whereas Application Binary Modifications typically refers to disk-based patching.
Explore 5 awesome GitHub repositories matching operating systems & systems programming · In-Memory Modifications. Refine with filters or upvote what's useful.
LSPosed is an Android runtime hooking framework and in-memory code modifier. It functions as a system hooking tool that intercepts and modifies system and application methods in memory to change behavior without altering original installation files. The project provides a standardized interface through the Xposed Module API, allowing for the development of plugins that alter the behavior of the Android operating system and installed applications. The framework covers a range of capabilities including runtime function interception, Android system debugging, and application customization. Thes
Provides the ability to alter system and application code in memory without modifying installation files.
BaiduNetdiskPlugin-macOS is a suite of macOS system extensions and tools designed to remove download speed limits and unlock premium features for the Baidu Netdisk client. It functions as a download speed unblocker and premium feature unlocker to enable maximum data transfer rates and activate SVIP status. The project includes a software update blocker that prevents the client from performing automatic updates to preserve the applied modifications. It achieves these results by removing local data transfer rate restrictions and eliminating trial duration limits.
Modifies specific bytes in volatile memory to flip flags for premium feature access.
LSPosed_mod is a system for Android system hooking and module management. It enables the installation and configuration of system-level modifications to change device behavior without altering the original system image or source files. The project utilizes zygote-based process injection and runtime method hooking to intercept execution flows in memory. It includes a version-agnostic execution layer to maintain a consistent interface across different Android operating system versions and environments, as well as dynamic proxy interception to modify method arguments and return values. Manageme
Alters application behavior by modifying code directly in volatile memory, ensuring modifications are easily reversible.
Acest proiect este o resursă educațională care oferă un tutorial de dezvoltare cuprinzător pentru scrierea și încărcarea programelor eBPF folosind C, Go și Rust în kernel-ul Linux. Servește drept ghid tehnic pentru dezvoltarea logicii personalizate care să fie executată direct în kernel. Materialele acoperă domenii specializate, inclusiv observabilitatea și trasarea kernel-ului, implementarea securității pentru detectarea intruziunilor și ingineria rețelelor de înaltă performanță pentru filtrarea pachetelor și echilibrarea sarcinii. Include, de asemenea, manuale dedicate pentru trasarea kernel-ului Linux și utilizarea kprobes, uprobes și tracepoints. Proiectul cuprinde o gamă largă de domenii de capabilități, cum ar fi instrumentarea kernel-ului, monitorizarea și observabilitatea sistemului, analiza rețelei și aplicarea securității. Se extinde în continuare la depanarea la nivel hardware pentru GPU-uri și drivere, precum și la manipularea sistemului de nivel scăzut și gestionarea resurselor.
Alters program behavior by overwriting data directly in a process memory buffer.
Lilu is a kernel patching engine and runtime code injection framework designed to modify kernel drivers and libraries in memory. It functions as an operating system customization framework that intercepts function calls and redirects execution flow within the kernel to resolve hardware compatibility issues and adjust system stability. The project employs a modular platform that allows for the injection of code and the modification of system libraries during the boot process without altering files on disk. It utilizes a plugin-based extension architecture and a standardized API interface to lo
Injects and modifies kernel extensions and libraries directly in volatile memory to change system behavior.