Skip to content

cyberfined/ptraxor

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
ptraxor.c
ptraxor.c
 
 

Repository files navigation

ptraxor

Tool for bypassing ptrace(ptrace_traceme) anti-debugging trick.

Usage

ptraxor -m <tracer> [args] -s <traced> [args]

Execute traced, attach to it, find ptrace_traceme syscall, set eax=0, detach from traced, execute tracer with last argument equal to pid of traced.

Example

ptraxor -m strace -p -s somep

Bypass ptrace_tracme in somep and execute strace -p <pid_of_traced>.

Bugs

When ptraxor detach from traced it send SIGSTOP to it, so to execute some tracers you need to send SIGCONT to traced.

Build

  1. git clone https://github.com/cyberfined/ptraxor.git && cd ptraxor
  2. make

About

No description or website provided.

Topics

c ptrace linux-app

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages