Alternatives and similar repositories for volundr

Users that are interested in volundr are comparing it to the libraries listed below

• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆30Updated 4 years ago
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆24Updated last year
• RobinFassinaMoschiniForks / TransitionalPeriod
  Former Multi - Ring to Kernel To UserMode Transitional Shellcode For Remote Kernel Exploits
  ☆29Updated 3 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 3 years ago
• rbmm / DirectSysCall
  ☆12Updated last year
• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• redcode-labs / Solaris
  A local LKM rootkit loader/dropper that lists available security mechanisms
  ☆52Updated 3 years ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆36Updated 2 months ago
• bhassani / doublepulsar
  DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)
  ☆27Updated 5 years ago
• aj-code / 3gsocks
  3gsocks - a reverse connection socks5 based network pivot
  ☆10Updated 4 years ago
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆30Updated last year
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆30Updated last year
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 3 years ago
• bot984397 / eepy
  ☆31Updated 2 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated last year
• zimnyaa / LEOPARDSEAL
  A simple Linux in-memory .so loader
  ☆30Updated 2 years ago
• forrest-orr / ExploitDev
  Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/
  ☆37Updated 3 years ago
• magisterquis / alpt4ats
  A Lazy Programmer's Tips for Avoiding the SOC ~ BSides Belfast 2024
  ☆16Updated 9 months ago
• shlyuz / implant_go
  Golang Shlyuz Implant Implementation
  ☆13Updated last month
• MythicMeta / MythicContainer
  GoLang package for creating Mythic Payload Types, C2 Profiles, Translation Services, WebHook listeners, and Loggers
  ☆19Updated 2 months ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆27Updated 2 years ago
• iDigitalFlame / XrMT
  e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!
  ☆24Updated 10 months ago
• shlyuz / teamserver
  ☆12Updated 3 years ago
• EvanMcBroom / fuse-loader
  Load a dynamic library from memory using a fuse mount
  ☆31Updated last year
• degenerat3 / CrowdControl
  C2 over web
  ☆8Updated 5 years ago
• magisterquis / bin2memfd
  Loads a program into a memfd and runs it.
  ☆13Updated 3 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Updated 5 years ago
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 3 years ago
• melotic / nanostorm
  An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.
  ☆19Updated 6 months ago
• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆22Updated 3 years ago