Skip to content
/ Syscall-Tracer Public

A program I wrote for pulling the system call number of all the functions from ntdll for RE

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sleepyG8/Syscall-Tracer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
syscalls.c
syscalls.c
 
 

Repository files navigation

Syscall-Tracer

Syscall-Tracer is a tool designed for reverse engineering and debugging, specifically focused on extracting system call numbers from ntdll.dll. By scanning and resolving function names dynamically, this tracer aids in syscall analysis and memory forensics.

Features

  • Extracts syscall numbers for all functions from ntdll.dll
  • Supports dynamic resolution of API calls
  • Useful for stealth debugging and runtime analysis
  • Designed to work efficiently with memory protection mechanisms

About

A program I wrote for pulling the system call number of all the functions from ntdll for RE

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages