Alternatives and similar repositories for kiteshield

Users that are interested in kiteshield are comparing it to the libraries listed below

• namazso / linux_injector
  A simple ptrace-less shared library injector for x64 Linux
  ☆261Updated 2 years ago
• sha0coder / mwemu
  x86 malware emulator
  ☆222Updated this week
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆87Updated 2 years ago
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆399Updated 5 months ago
• malisal / loaders
  Tiny loaders for various binary formats.
  ☆238Updated 9 years ago
• trustedsec / ELFLoader
  ☆272Updated 3 years ago
• SheLLVM / SheLLVM
  A collection of LLVM transform and analysis passes to write shellcode in regular C
  ☆375Updated 2 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆251Updated 7 years ago
• repnz / autochk-rootkit
  Reverse engineered source code of the autochk rootkit
  ☆202Updated 5 years ago
• NozomiNetworks / upx-recovery-tool
  ☆102Updated 2 years ago
• czs108 / Windows-PE-Packer
  🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engine…
  ☆345Updated 8 months ago
• jermeyyy / rooty
  Academic project of Linux rootkit made for Bachelor Engineering Thesis.
  ☆106Updated 11 months ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆93Updated last year
• ex0dus-0x / ward
  Simple ELF runtime packer for creating self-protecting binaries
  ☆22Updated last year
• 0xcpu / ExecutiveCallbackObjects
  Research on Windows Kernel Executive Callback Objects
  ☆288Updated 5 years ago
• elfmaster / maya
  Highly advanced Linux anti-exploitation and anti-tamper binary protector for ELF.
  ☆159Updated 2 years ago
• ropfuscator / ropfuscator
  ROPfuscator is a fine-grained code obfuscation framework for C/C++ programs using ROP (return-oriented programming).
  ☆428Updated last year
• crummie5 / FreshyCalls
  FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!
  ☆338Updated 2 years ago
• 0vercl0k / kdmp-parser
  A Windows kernel dump C++ parser library with Python 3 bindings.
  ☆201Updated 11 months ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆73Updated 4 years ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆486Updated 6 months ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year
• jackullrich / memfuck
  A PoC designed to bypass all usermode hooks in a WoW64 environment.
  ☆150Updated 4 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 8 years ago
• odzhan / aes_dust
  Unlicensed tiny / small portable implementation of 128/256-bit AES encryption in C, x86, AMD64, ARM32 and ARM64 assembly
  ☆129Updated 2 months ago
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆42Updated 4 years ago
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆254Updated last year
• lucasg / findrpc
  Idapython script to carve binary for internal RPC structures
  ☆234Updated last year
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆152Updated last year