document updated 13 years ago, on Sep 27, 2010

LD_PRELOAD
ptrace
- you can do some interesting things with gdb
- however, you're limited somewhat. GDB is based on ptrace, and you can do a lot more with ptrace directly
- injcode is one utility that facilitates this
- injectso
- writeups:
  - Ars Technica
  - Linux Journal — part 1, part 2
lasso can do it without ptrace
Mammmon's The Dude also works without ptrace (it loads its own kernel module, so that the existing anti-ptrace code won't work)