MatheuZSecurity / detect-lkm-rootkit-cheatsheetLinks
Cheat sheet to detect and remove linux kernel rootkit
☆72Updated 9 months ago
Alternatives and similar repositories for detect-lkm-rootkit-cheatsheet
Users that are interested in detect-lkm-rootkit-cheatsheet are comparing it to the libraries listed below
Sorting:
- ☆70Updated 8 months ago
- Collection of codes focused on Linux rootkits☆160Updated last week
- Analyse MSI files for vulnerabilities☆138Updated last year
- Lena's scripts/code/resources for malware analysis☆26Updated last year
- ☆38Updated 9 months ago
- Vibe Malware Triage - MCP server for static PE analysis.☆70Updated 4 months ago
- ☆37Updated last year
- Make an Linux Kernel rootkit visible again.☆57Updated 7 months ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆132Updated 8 months ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆38Updated 7 months ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆90Updated last year
- Configuration Extractors for Malware☆113Updated 5 months ago
- Tools for analyzing EDR agents☆266Updated last year
- A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files☆128Updated last year
- Powershell Linter☆83Updated 2 weeks ago
- ☆113Updated 2 months ago
- GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…☆70Updated last month
- Establishes persistence on a Linux system by creating a udev rule that triggers the execution of a specified payload (binary or script)☆146Updated last year
- A Repository to Track Anti-Forensic Techniques☆112Updated 2 years ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆23Updated 9 months ago
- A comprehensive tool that provides an insightful analysis of Microsoft's monthly security updates.☆189Updated 6 months ago
- In-Memory Rootkit For Linux and BSD☆82Updated last month
- Python tool to check rootkits in Windows kernel☆201Updated last month
- ☆105Updated last year
- Linpmem is a linux memory acquisition tool☆88Updated 3 months ago
- ☆121Updated last year
- A CIA tradecraft technique to asynchronously detect when a process is created using WMI.☆135Updated last year
- Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis☆66Updated last year
- Linux #rootkit and #malware revealer☆27Updated last year
- Modular framework for automating triaging, malware analysis, and analyst workflows☆42Updated 5 months ago