compilepeace / EVIL_RABBIT

Related projects ⓘ

Alternatives and complementary repositories for EVIL_RABBIT

• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆50Updated last year
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆61Updated 2 years ago
• nisay759 / linux-rootkits
  My little precious collection of Linux 4.x kernel rootkits
  ☆24Updated 3 months ago
• perturbed-platypus / LinooxMalware
  ☆26Updated 5 years ago
• narhen / procjack
  PoC of injecting code into a running Linux process
  ☆23Updated 5 years ago
• forrest-orr / ExploitDev
  Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/
  ☆35Updated 3 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆60Updated 2 years ago
• redcode-labs / Solaris
  A local LKM rootkit loader/dropper that lists available security mechanisms
  ☆52Updated 3 years ago
• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆39Updated 4 years ago
• vulnwarex / bin2sc
  Binary to shellcode from an object/executable format 32 & 64-bit PE , ELF
  ☆71Updated 3 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆24Updated 3 years ago
• dsnezhkov / elfpack
  ☆44Updated 2 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆69Updated 3 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆48Updated 5 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆29Updated 4 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆42Updated 3 years ago
• msuiche / smbaloo
  ☆49Updated 4 years ago
• Error996 / bdvl
  bdvl
  ☆109Updated 2 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆66Updated 2 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆25Updated 4 years ago
• amitwaisel / Malproxy
  Proxy system calls over an RPC channel
  ☆96Updated 2 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆51Updated 4 years ago
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆13Updated last year
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆21Updated 4 years ago
• h0mbre / Windows-Exploits
  ☆87Updated 4 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆38Updated 4 years ago
• its-a-feature / macos_execute_from_memory
  PoC of macho loading from memory
  ☆52Updated this week
• redcanaryco / exploit-primitive-playground
  ☆59Updated 4 months ago
• NtRaiseHardError / Kaiser
  Fileless persistence, attacks and anti-forensic capabilties.
  ☆87Updated 5 years ago