Alternatives and similar repositories for EVIL_RABBIT

Users that are interested in EVIL_RABBIT are comparing it to the libraries listed below

• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆127Updated 3 years ago
• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆70Updated 3 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆51Updated 5 years ago
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆22Updated last year
• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆39Updated 5 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 3 years ago
• dsnezhkov / elfpack
  ☆47Updated 2 years ago
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆64Updated 7 years ago
• amitwaisel / Malproxy
  Proxy system calls over an RPC channel
  ☆98Updated 3 years ago
• redcode-labs / Solaris
  A local LKM rootkit loader/dropper that lists available security mechanisms
  ☆52Updated 3 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆29Updated 4 years ago
• FlamingSpork / iptable_evil
  An evil bit backdoor for iptables
  ☆52Updated 4 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆51Updated 6 years ago
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆38Updated 3 years ago
• loneicewolf / EXEC_LKM
  A LKM (Loadable Kernel Module) to execute a command as root; I include a example of using netcat and a compiled(with source and steps on…
  ☆16Updated 7 months ago
• oneNutW0nder / CatTails
  Raw socket library/framework for red team events
  ☆34Updated 2 years ago
• k3idii / CobaltStrike-Tools
  Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...
  ☆29Updated 2 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆39Updated 4 years ago
• h0mbre / Windows-Exploits
  ☆91Updated 4 years ago
• jackullrich / universal-syscall-64
  Resolve syscall numbers at runtime for all Windows versions.
  ☆61Updated 5 months ago
• OccamsXor / sim-ba
  (Sim)ulate (Ba)zar Loader
  ☆29Updated 4 years ago
• DanusMinimus / Injections
  A repository where I share my injection implemintations
  ☆29Updated 4 years ago
• t57root / amcsh
  A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.
  ☆30Updated 12 years ago
• spiderpig1297 / kfile-over-icmp
  kfile-over-icmp is an LKM for stealth sending of files over ICMP communication.
  ☆17Updated 4 years ago
• audibleblink / ino
  In 'n Out - See what goes in and comes out of PEs
  ☆34Updated 3 years ago
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆29Updated 6 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆43Updated 4 years ago