shellen - :cherry_blossom: Interactive shellcoding environment to easily craft shellcodes

•    Python

---

Shellen is an interactive shellcoding environment. If you want a handy tool to write shellcodes, then shellen may be your friend. Shellen can also be used as an assembly or disassembly tool. keystone and capstone engines are used for all of shellen's operations.

keystone capstone shellcode interactive assembler dissassembler pwn shellcoding disassembly syscalls architecture dsm asm shell syscall-table common-shellcodes exploitation ctf exploit

contained.af - A stupid game for learning about containers, capabilities, and syscalls.

•    Javascript

---

A game for learning about containers, capabilities, and syscalls. To add a question edit this file: frontend/js/questions.js.

syscalls game containers security apparmor seccomp docker opencontainers

kafel - A language and library for specifying syscall filtering policies.

•    C

---

Kafel is a language and library for specifying syscall filtering policies. The policies are compiled into BPF code that can be used with seccomp-filter.This is NOT an official Google product.

seccomp-filter security syscalls

ptracer - A library for ptrace-based tracing of Python programs

•    Python

---

Ptracer is a library providing on-demand system call tracing in Python programs. In the above example, ptracer will invoke the callback only for successful attempts to open files in the "/tmp" directory for writing.

ptrace syscalls

go-memfd - Golang Linux memfd library

•    Go

---

This is a Go library for working with Linux memfd, memory file descriptors. These provide shareable anonymous memory, which can be passed around via file descriptors, and also locked from write or resize. They are designed to let programs that do not trust each other communicate via shared memory without issues of naming, truncation, or race conditions due to modifications.

syscalls linux-memfd capnproto memfd

write-a-strace-and-gdb - A tiny system call tracer and debugger implementation

•    C

---

This repo contains a very simple implementation of a possible system call tracer and debugger.

ptrace learning strace debugger syscalls computers

Record-Audio-on-Windows - A Go program that uses winmm.dll to record audio to a WAV file.

•    Go

---

A Go program that uses winmm.dll to record audio to a WAV file.

api audio record wav mcisendstring syscalls microphone winmm dll

dock - dock try to re-implement docker 🐳

•    Go

---

dock try to re-implement docker 🐳

docker lxc-containers cgroup aufs veth mount syscalls overlay2

linux-prog - Some C code i write to study systems programming (while reading The Linux Programming Interface)

•    C

---

Some C code i write to study systems programming (while reading The Linux Programming Interface)

syscalls kernel

TARDIS - Trace And Rewrite Delays In Syscalls: Hooking time-related Linux syscalls to warp a process's perspective of time, using ptrace

•    C

---

Trace And Rewrite Delays In Syscalls: Hooking time-related Linux syscalls to warp a process's perspective of time. This code is rather buggy, mainly due to my lack of understanding of the ptrace API. You probably shouldn't use it for anything serious, although it could be useful for testing/debugging certain applications.

ptrace syscalls hooking time

cubostratus - Blazingly fast Linux syscall collector

•    Rust

---

cubostratus is a high performance Linux syscall collector. It acquires the syscall flow from the rock solid sysdig driver and emits it to Kafka brokers for later ingestion, storage and analysis.

linux-kernel syscalls containers instrumentation cgroups

openredir - redirect file open operations via LD_PRELOAD

•    C

---

redirect file open operations via LD_PRELOAD

lua-script redirect syscalls ld-preload

gtrace - Experimental system call tracer for Linux x86-64, written in Go

•    C

---

A system call tracer for Linux x86-64. DISCLAIMER: This software is experimental and not considered stable. Do not use it in mission-critical environments.

tracer syscalls strace systemcalls