Alternatives and similar repositories for kiteshield:

Users that are interested in kiteshield are comparing it to the libraries listed below

• namazso / linux_injector
  A simple ptrace-less shared library injector for x64 Linux
  ☆253Updated 2 years ago
• elfmaster / maya
  Highly advanced Linux anti-exploitation and anti-tamper binary protector for ELF.
  ☆157Updated 2 years ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆84Updated last year
• hasherezade / process_overwriting
  Yet another variant of Process Hollowing
  ☆384Updated 2 months ago
• sha0coder / mwemu
  x86 malware emulator
  ☆215Updated last week
• SheLLVM / SheLLVM
  A collection of LLVM transform and analysis passes to write shellcode in regular C
  ☆370Updated last year
• leandrofroes / gftrace
  A command line Windows API tracing tool for Golang binaries.
  ☆156Updated last year
• kirschju / debugmenot
  Collection of simple anti-debugging tricks for Linux
  ☆55Updated 6 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆62Updated 3 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆245Updated 7 years ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆86Updated last year
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago
• jackullrich / syscall-detect
  PoC capable of detecting manual syscalls from usermode.
  ☆192Updated 4 months ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆162Updated 3 years ago
• yardenshafir / IoRingReadWritePrimitive
  Post exploitation technique to turn arbitrary kernel write / increment into full read/write primitive on Windows 11 22H2
  ☆225Updated 2 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆129Updated last year
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆73Updated 2 years ago
• LloydLabs / Windows-API-Hashing
  This is a simple example and explanation of obfuscating API resolution via hashing
  ☆237Updated 4 years ago
• crummie5 / FreshyCalls
  FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!
  ☆327Updated 2 years ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆151Updated last year
• trustedsec / ELFLoader
  ☆268Updated 2 years ago
• 86hh / DreamLoader
  Simple 32/64-bit PEs loader.
  ☆137Updated 6 years ago
• NozomiNetworks / upx-recovery-tool
  ☆101Updated 2 years ago
• harlamism / IdaClu
  IdaClu is a version agnostic IDA Pro plugin for grouping similar functions. Pick an existing grouping algorithm or create your own.
  ☆157Updated 4 months ago
• sad0p / d0zer
  Elf binary infector written in Go.
  ☆208Updated 2 months ago
• ropfuscator / ropfuscator
  ROPfuscator is a fine-grained code obfuscation framework for C/C++ programs using ROP (return-oriented programming).
  ☆424Updated 10 months ago
• notpidgey / EagleVM
  Native code virtualizer for x64 binaries
  ☆473Updated 3 months ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆247Updated last year
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆116Updated 8 years ago
• ex0dus-0x / ward
  Simple ELF runtime packer for creating self-protecting binaries
  ☆21Updated last year