RITRedteam / goofkit
In line function hooking LKM rootkit
☆51Updated 4 years ago
Related projects: ⓘ
- Proxy system calls over an RPC channel☆96Updated 2 years ago
- Linux Kernel module-less implant (backdoor)☆64Updated 3 years ago
- ☆123Updated this week
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 4 years ago
- ☆43Updated 2 years ago
- Matryoshka - stacked LKM loader☆50Updated 11 months ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆94Updated 4 years ago
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆113Updated 8 years ago
- Process reimaging proof of concept code☆95Updated 5 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆65Updated 2 years ago
- ☆87Updated 3 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆81Updated 2 years ago
- TrashDBG the world's worse debugger☆24Updated 2 years ago
- ☆49Updated 4 years ago
- Simple 32/64-bit PEs loader.☆135Updated 5 years ago
- Go Lang Portable Executable Parser☆37Updated 3 years ago
- Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.☆72Updated 2 years ago
- Local OXID Resolver (LCLOR) : Research and Tooling☆31Updated 3 years ago
- ☆26Updated 5 years ago
- POC viruses I have created to demo some ideas☆58Updated 4 years ago
- ☆49Updated this week
- ☆151Updated 3 years ago
- WIP Emotet Control Flow Unflattening using miasm and radare2☆22Updated last year
- This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…☆96Updated 2 weeks ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 4 years ago
- Windows Drivers☆95Updated 5 years ago
- An example of how x64 kernel shellcode can dynamically find and use APIs☆103Updated 4 years ago
- ☆48Updated 4 years ago
- -x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.☆26Updated 3 years ago
- Parsers for custom malware formats ("Funky malware formats")☆92Updated 2 years ago