Alternatives and similar repositories for detect-lkm-rootkit-cheatsheet

Users that are interested in detect-lkm-rootkit-cheatsheet are comparing it to the libraries listed below

• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated 11 months ago
• MatheuZSecurity / Rootkit
  Collection of codes focused on Linux rootkits
  ☆110Updated 3 months ago
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆52Updated 3 months ago
• hasherezade / flareon2024
  ☆37Updated 5 months ago
• eric-conrad / c2-talk
  ☆37Updated last year
• MatheuZSecurity / NullSection
  NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.
  ☆65Updated last year
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆98Updated last year
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆62Updated last month
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆81Updated this week
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆53Updated 4 months ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆17Updated 5 months ago
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆69Updated 3 months ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆59Updated last year
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆79Updated 9 months ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated 8 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆60Updated 2 weeks ago
• wetw0rk / wetw0rk.github.io
  ☆18Updated last week
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆121Updated 8 months ago
• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated 7 months ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆131Updated 9 months ago
• jaredcatkinson / MalwareMorphology
  ☆80Updated 6 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Updated 2 months ago
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆49Updated 8 months ago
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆36Updated 3 months ago
• airbus-cert / minusone
  Powershell Linter
  ☆53Updated last month
• naacbin / CovenantDecryptor
  ☆20Updated last year
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆42Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆62Updated 4 months ago