Alternatives and similar repositories for elf-in-memory-exec

Users that are interested in elf-in-memory-exec are comparing it to the libraries listed below

• elastic / Silhouette
  Keep it secret, keep it safe
  ☆80Updated last year
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆63Updated last year
• mav8557 / virus
  Polymorphic ELF Virus
  ☆18Updated 3 years ago
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆26Updated 2 months ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆95Updated 7 months ago
• redcode-labs / Solaris
  A local LKM rootkit loader/dropper that lists available security mechanisms
  ☆52Updated 4 years ago
• skelsec / aardwolfgui
  Asynchronous RDP/VNC client for Python (GUI)
  ☆75Updated last year
• limbenjamin / nTimetools
  Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes
  ☆51Updated 4 years ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆125Updated last year
• BronzeBee / cve-2023-23397
  Python script for sending e-mails with CVE-2023-23397 payload using SMTP
  ☆14Updated 2 years ago
• melotic / rekk
  rekk is set of tools written in Rust to obfuscate ELF & PE executables with nanomites.
  ☆31Updated last year
• MiBaLToALeX / ShellOrd
  ShellOrd is a C2 (Command & Control) framework cross-platform and agent written in Rust & Java
  ☆15Updated last year
• MythicAgents / poseidon
  Poseidon is a Golang agent targeting Linux and macOS
  ☆201Updated last week
• frank2 / blenny
  A payload delivery system which embeds payloads in an executable's icon file!
  ☆74Updated 2 years ago
• DissectMalware / yaradbg-frontend
  ☆39Updated 2 years ago
• b1tg / Ox-C2
  Command & Control server and agent written in Rust
  ☆35Updated 3 years ago
• ViperXSecurity / lib-nosa
  lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.
  ☆120Updated last year
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆44Updated last year
• arget13 / memdlopen
  dlopen() filelessly a shared object or even a program (and run it).
  ☆56Updated 2 years ago
• MythicMeta / MythicContainer
  GoLang package for creating Mythic Payload Types, C2 Profiles, Translation Services, WebHook listeners, and Loggers
  ☆23Updated last month
• naksyn / talks
  Repo containing my public talks
  ☆23Updated 2 years ago
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆30Updated last year
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆29Updated 3 years ago
• winterknife / EVENSTAR
  Intel 64/Windows low-level experiments
  ☆63Updated 5 months ago
• skelsec / asysocks
  Socks5 / Socks4 client and server library
  ☆71Updated 3 months ago
• mttaggart / quasar
  quASAR: ASAR manipulation made easy
  ☆38Updated 3 years ago
• nccgroup / mimikatz-detector-condrv
  The Console Monitor Driver is a KMDF kernel-mode filter driver that captures certain Fast I/O operations (input and output) that is sent …
  ☆41Updated 3 years ago
• anvilsecure / ulexecve
  ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…
  ☆199Updated 2 years ago
• Kudaes / RustChain
  Hide memory artifacts using ROP and hardware breakpoints.
  ☆147Updated 2 years ago
• thiagopeixoto / massayo
  Massayo is a small proof-of-concept Rust library which removes AV/EDR hooks in a given system DLL
  ☆64Updated 3 years ago