Alternatives and similar repositories for Linux-Process-Injection

Users that are interested in Linux-Process-Injection are comparing it to the libraries listed below

• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆164Updated last month
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆136Updated 7 months ago
• exploits-forsale / 24h2-nt-exploit
  Exploit targeting NT kernel in 24H2 Windows Insider Preview
  ☆149Updated last year
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆57Updated 10 months ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆262Updated last month
• Nero22k / Exploits
  Repo with different exploits & PoCs
  ☆66Updated 7 months ago
• TheN00bBuilder / cve-2024-11477-writeup
  CVE-2024-11477 7Zip Code Execution Writeup and Analysis
  ☆65Updated last year
• ucsb-seclab / popkorn-artifact
  ☆85Updated 4 months ago
• SeanPesce / SELinux-Kernel-Module-Bypass
  Tools to bypass flawed SELinux policies using the init_module system call
  ☆58Updated 2 years ago
• secnotes / elfspirit
  ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.
  ☆143Updated 3 weeks ago
• exploits-forsale / prefetch-tool
  Windows KASLR bypass using prefetch side-channel
  ☆171Updated last year
• namazso / linux_injector
  A simple ptrace-less shared library injector for x64 Linux
  ☆278Updated 2 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆74Updated 4 years ago
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆131Updated 9 months ago
• zerozenxlabs / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆127Updated last year
• ysanatomic / io_uring_LPE-CVE-2024-0582
  LPE exploit for CVE-2024-0582 (io_uring)
  ☆101Updated last year
• ommadawn46 / HEVD-BufferOverflowNonPagedPoolNx-Win10-22H2
  HEVD Exploit: BufferOverflowNonPagedPoolNx on Windows 10 22H2 - Escalating from Low Integrity to SYSTEM via Aligned Chunk Confusion
  ☆64Updated 8 months ago
• GunshipPenguin / kiteshield
  Packer/Protector for x86-64 ELF binaries on Linux
  ☆187Updated 4 years ago
• hoefler02 / CVE-2025-21756
  Exploit for CVE-2025-21756 for Linux kernel 6.6.75. My first linux kernel exploit!
  ☆154Updated 7 months ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆106Updated last year
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated last year
• 0vercl0k / rp-bf.rs
  rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
  ☆121Updated last year
• arget13 / memdlopen
  dlopen() filelessly a shared object or even a program (and run it).
  ☆56Updated 2 years ago
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆39Updated last year
• PeterGabaldon / CVE-2024-7479_CVE-2024-7481
  TeamViewer User to Kernel Elevation of Privilege PoC. CVE-2024-7479 and CVE-2024-7481. ZDI-24-1289 and ZDI-24-1290. TV-2024-1006.
  ☆135Updated last year
• Black-Frost / windows-learning
  ☆143Updated 9 months ago
• MrAle98 / CVE-2025-21333-POC
  POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY
  ☆226Updated 9 months ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆54Updated 6 months ago
• fortra / CVE-2024-30051
  ☆122Updated last year
• Notselwyn / netkit
  Linux rootkit for educational purposes
  ☆34Updated last year