NateBrune / fmemLinks
Linux Kernel Module designed to help analyze volatile memory in the linux kernel
☆120Updated last month
Alternatives and similar repositories for fmem
Users that are interested in fmem are comparing it to the libraries listed below
Sorting:
- Trusted Path Execution (TPE) Linux Kernel Module☆162Updated 6 years ago
- (Linux Kernel) Stack Monitoring Tool☆47Updated 3 years ago
- A place to store my toy linux-security modules.☆91Updated 4 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆132Updated last year
- Summary of the patch status for Meltdown / Spectre☆350Updated 7 years ago
- GitHub mirror of the Linux Kernel's audit repository☆153Updated last week
- ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)☆138Updated 7 years ago
- Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)☆116Updated 2 years ago
- IPMI stuff from DARPA work☆74Updated 2 years ago
- Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes☆62Updated 6 years ago
- BootHole vulnerability (CVE-2020-10713). detection script, links and other mitigation related materials☆68Updated 5 years ago
- Script that dumps running process memory from Linux systems using /proc.☆79Updated 12 years ago
- UNIX domain socket tracing LD_PRELOAD wrapper, mirror from git://git.gnumonks.org/udtrace☆51Updated 6 years ago
- ssldump - (de-facto repository gathering patches around the cyberspace)☆253Updated this week
- ☆246Updated 4 years ago
- Devestating and awesome Linux X86_64 ELF Virus☆232Updated 3 years ago
- Rootkit Detector for UNIX☆61Updated 2 years ago
- Forkstat is a program that logs process fork(), exec() and exit() activity. It is useful for monitoring system behaviour and to track dow…☆111Updated 6 months ago
- Fork of KVM with Virtual Machine Introspection patches☆37Updated last year
- Disabling kernel lockdown on Ubuntu without physical access☆81Updated 2 years ago
- Notes on QEMU and Debian MIPS (big-endian)☆45Updated 6 years ago
- TCP/UDP symmetric encryption tunnel wrapper☆122Updated 5 years ago
- IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…☆65Updated 6 months ago
- A LKM rootkit for most newer kernel versions.☆178Updated 8 years ago
- A ptrace library for easy syscall injection in Linux.☆181Updated last year
- This demonstrates the hijacking of the "write" system call and how to set the System Call table to read/write mode via modifying the corr…☆19Updated 11 years ago
- ELF binary infector☆33Updated 14 years ago
- Convert libvirt-QEMU-save (LQS) files to raw memory files☆37Updated 2 years ago
- A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes☆58Updated 10 years ago
- Memfetch is a simple utility to dump all memory of a running process, either immediately or when a fault condition is discovered. It is a…☆43Updated 7 years ago