Alternatives and similar repositories for detect-lkm-rootkit-cheatsheet

Users that are interested in detect-lkm-rootkit-cheatsheet are comparing it to the libraries listed below

• MatheuZSecurity / Rootkit
  Collection of codes focused on Linux rootkits
  ☆148Updated last week
• ArtemBaranov / WindowsRootkitsGuide
  ☆67Updated 6 months ago
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆27Updated last year
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆21Updated 7 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆132Updated 6 months ago
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆55Updated 5 months ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆138Updated 11 months ago
• FuzzySecurity / BHUSA-2023
  ☆105Updated last year
• hasherezade / flareon2024
  ☆37Updated 8 months ago
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆66Updated 3 months ago
• outflanknl / edr-internals
  Tools for analyzing EDR agents
  ☆241Updated last year
• eric-conrad / c2-talk
  ☆37Updated last year
• wetw0rk / AWE-PREP
  Repository containing all training and tutorials completed in preparation for the OSEE in conjunction with the AWE course.
  ☆82Updated this week
• naacbin / CovenantDecryptor
  ☆28Updated last year
• grahamhelton / USP
  Establishes persistence on a Linux system by creating a udev rule that triggers the execution of a specified payload (binary or script)
  ☆146Updated 11 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆127Updated last year
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆90Updated 11 months ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆92Updated 2 months ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆123Updated 11 months ago
• yo-yo-yo-jbo / dumping_lsass
  The different ways to dump lsass
  ☆38Updated last week
• struppigel / hedgehog-tools
  ☆113Updated last month
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 5 years ago
• hardenedlinux / userland-exec
  Userland exec PoC to be used as attack vector technique
  ☆85Updated 6 months ago
• airbus-cert / minusone
  Powershell Linter
  ☆80Updated 3 weeks ago
• SaadAhla / VSCode-Backdoor
  Backdooring VSCode Projects
  ☆79Updated 2 months ago
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆198Updated 5 months ago
• PenetrumLLC / Malcore-Playbook
  Modular framework for automating triaging, malware analysis, and analyst workflows
  ☆42Updated 3 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Updated 4 months ago
• dodo-sec / Malware-Analysis
  ☆136Updated 2 years ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆63Updated 3 months ago