Alternatives and similar repositories for volundr:

Users that are interested in volundr are comparing it to the libraries listed below

• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆26Updated 3 years ago
• aj-code / 3gsocks
  3gsocks - a reverse connection socks5 based network pivot
  ☆10Updated 4 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆28Updated 4 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆20Updated last year
• RITRedteam / nosferatu
  Windows NTLM Authentication Backdoor
  ☆15Updated 3 years ago
• rhotav / PT_LOAD-Injector
  An injector that use PT_LOAD technique
  ☆12Updated 2 years ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆21Updated last year
• gwillgues / BPFDoor
  BPFDoor Source Code. Originally found from Chinese Threat Actor Red Menshen
  ☆45Updated 2 years ago
• sevagas / MagicLib
  Non organized Cpp code files I used for my research on Windows
  ☆22Updated 4 years ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆27Updated 2 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆72Updated 4 years ago
• HackingThings / OneBootloaderToLoadThemAll
  One Bootloader to Load Them All - Research materials, Code , Etc.
  ☆51Updated 2 years ago
• rbmm / DirectSysCall
  ☆12Updated last year
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆29Updated last year
• bhassani / doublepulsar
  DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)
  ☆27Updated 5 years ago
• zimnyaa / LEOPARDSEAL
  A simple Linux in-memory .so loader
  ☆30Updated 2 years ago
• shlyuz / implant_go
  Golang Shlyuz Implant Implementation
  ☆12Updated 2 years ago
• magisterquis / bin2memfd
  Loads a program into a memfd and runs it.
  ☆12Updated 2 years ago
• listinvest / undonut
  Unpacker for donut shellcode
  ☆17Updated 4 years ago
• MythicMeta / MythicContainer
  GoLang package for creating Mythic Payload Types, C2 Profiles, Translation Services, WebHook listeners, and Loggers
  ☆19Updated 3 weeks ago
• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆22Updated 3 years ago
• hacksysteam / CVE-2021-45067
  Adobe Reader DC Information Leak Exploit
  ☆21Updated 2 years ago
• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆28Updated last year
• EvanMcBroom / fuse-loader
  Load a dynamic library from memory using a fuse mount
  ☆31Updated last year
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 2 years ago
• turekt / knockknockgo
  Pure Go rewrite of knockknock
  ☆10Updated 2 years ago
• audibleblink / getsystem
  Small utility package for manipulating Windows process tokens
  ☆26Updated 3 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Updated 5 years ago