Alternatives and similar repositories for detect-lkm-rootkit-cheatsheet:

Users that are interested in detect-lkm-rootkit-cheatsheet are comparing it to the libraries listed below

• MatheuZSecurity / Rootkit
  Collection of codes focused on Linux rootkits
  ☆73Updated 2 weeks ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆96Updated 9 months ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆71Updated 4 months ago
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆25Updated 7 months ago
• Karkas66 / CelestialSpark
  A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust
  ☆83Updated 9 months ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆82Updated 11 months ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆57Updated 10 months ago
• hasherezade / flareon2024
  ☆33Updated last month
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆84Updated 11 months ago
• yo-yo-yo-jbo / injection_and_hooking_intro
  ☆38Updated last year
• wetw0rk / wetw0rk.github.io
  ☆17Updated last week
• OtterHacker / Hooker
  ☆102Updated 2 months ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆121Updated 4 months ago
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆61Updated last week
• sensepost / mydumbedr
  ☆112Updated 11 months ago
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆46Updated 2 weeks ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆64Updated 2 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆66Updated 2 weeks ago
• Wh04m1001 / GamingServiceEoP5
  ☆27Updated 8 months ago
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆45Updated 10 months ago
• fin3ss3g0d / StoneKeeper
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆151Updated 3 weeks ago
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆87Updated 7 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆160Updated 7 months ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆25Updated 4 months ago
• ar0x4 / ysoserial.net-docker
  ysoserial.net docker image
  ☆28Updated 3 months ago
• HulkOperator / AuthStager
  ☆45Updated 2 months ago
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆35Updated 4 months ago
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆76Updated 5 months ago
• NUL0x4C / FetchPayloadFromDummyFile
  Construct the payload at runtime using an array of offsets
  ☆61Updated 6 months ago
• 0xNinjaCyclone / IATUnhooker
  IAT Unhooking proof-of-concept
  ☆29Updated 9 months ago