elfmaster/libelfmaster

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/elfmaster/libelfmaster)

elfmaster / libelfmaster

Secure ELF parsing/loading library for forensics reconstruction of malware, and robust reverse engineering tools

☆450

Alternatives and similar repositories for libelfmaster

Users that are interested in libelfmaster are comparing it to the libraries listed below

Sorting:

elfmaster / libelfmaster_examples
View on GitHub
Simple ELF tools written to demonstrate libelfmaster capabilities.
☆41Sep 10, 2018Updated 7 years ago
elfmaster / dt_infect
View on GitHub
ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
☆112Apr 8, 2020Updated 5 years ago
elfmaster / dsym_obfuscate
View on GitHub
Obfuscates dynamic symbol table
☆136Jan 10, 2019Updated 7 years ago
elfmaster / ftrace
View on GitHub
POSIX Function tracing
☆339Aug 17, 2017Updated 8 years ago
Bowlslaw / readelfmaster
View on GitHub
A reimplementation of GNU readelf, using Ryan O'Neill's innovative library, libelfmaster.
☆10Sep 28, 2019Updated 6 years ago
elfmaster / static_binary_mitigations
View on GitHub
relros.c applies RELRO to static binaries, and static_to_dyn.c applies ASLR to static binaries.
☆34Jun 25, 2018Updated 7 years ago
elfmaster / ecfs
View on GitHub
extended core file snapshot format
☆229Jan 25, 2019Updated 7 years ago
elfmaster / skeksi_virus
View on GitHub
Devestating and awesome Linux X86_64 ELF Virus
☆238Sep 9, 2022Updated 3 years ago
elfmaster / davinci
View on GitHub
Transforms any file into a protected ELF executable
☆29Mar 17, 2015Updated 11 years ago
elfmaster / scop_virus_paper
View on GitHub
ELF Virus infection techniques that work with SCOP (Secure code partitioned) executables
☆15May 13, 2019Updated 6 years ago
elfmaster / ecfs_exec
View on GitHub
Be able to execute memory snapshots so they can start running where they left off.
☆36Apr 14, 2015Updated 10 years ago
elfmaster / linker_preloading_virus
View on GitHub
An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
☆66Feb 24, 2022Updated 4 years ago
elfmaster / saruman
View on GitHub
ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
☆138Mar 14, 2018Updated 8 years ago
elfmaster / maya
View on GitHub
Highly advanced Linux anti-exploitation and anti-tamper binary protector for ELF.
☆159Sep 3, 2022Updated 3 years ago
elfmaster / shiva
View on GitHub
Shiva is a programmable dynamic linker for loading ELF microprograms
☆35Sep 4, 2023Updated 2 years ago
thorkill / eresi
View on GitHub
The ERESI Reverse Engineering Software Interface
☆570Nov 11, 2020Updated 5 years ago
elfmaster / binflow
View on GitHub
This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)
☆110Nov 14, 2018Updated 7 years ago
advanced-microcode-patching / shiva
View on GitHub
A custom ELF linker/loader for installing ET_REL binary patches at runtime
☆200Mar 5, 2026Updated 2 weeks ago
arcana-technologies / arcana.elfscan
View on GitHub
ELF binary forensics tool for APT, virus, backdoor and rootkit detection
☆51Nov 7, 2024Updated last year
elfmaster / fork_trace
View on GitHub
☆11Sep 26, 2019Updated 6 years ago
jnider / delinker
View on GitHub
Unlinks a binary executable to get back a set of .o object files for further transformation and re-linking.
☆163Feb 6, 2022Updated 4 years ago
slick1015 / pad_unpacker
View on GitHub
☆35Dec 2, 2018Updated 7 years ago
elfmaster / kprobe_rootkit
View on GitHub
Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
☆43Mar 18, 2015Updated 11 years ago
ampotos / dynStruct
View on GitHub
Reverse engineering tool for automatic structure recovering and memory use analysis based on DynamoRIO and Capstone
☆324Aug 12, 2019Updated 6 years ago
zhechkoz / PwIN
View on GitHub
Security Evaluation of Dynamic Binary Instrumentation Engines
☆81Sep 1, 2018Updated 7 years ago
lief-project / LIEF
View on GitHub
LIEF - Library to Instrument Executable Formats (C++, Python, Rust)
☆5,316Updated this week
serge1 / ELFIO
View on GitHub
ELFIO and ARIO are robust, header-only C++ libraries designed to make binary file and archive manipulation effortless, efficient, and por…
☆864Aug 16, 2025Updated 7 months ago
jacob-baines / elfparser
View on GitHub
Cross Platform ELF analysis
☆355Jun 4, 2024Updated last year
Cararasu / holodec
View on GitHub
Decompiler for x86 and x86-64 ELF binaries
☆220Apr 16, 2019Updated 6 years ago
ulexec / Linux.RV
View on GitHub
PoC Reverse Text segment ELF File infector
☆14Feb 28, 2020Updated 6 years ago
ixty / mandibule
View on GitHub
linux elf injector for x86 x86_64 arm arm64
☆346May 31, 2018Updated 7 years ago
En14c / Erebus
View on GitHub
Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
☆32Feb 23, 2020Updated 6 years ago
cea-sec / miasm
View on GitHub
Reverse engineering framework in Python
☆3,840Jan 26, 2025Updated last year
RPISEC / llvm-deobfuscator
View on GitHub
☆429May 16, 2021Updated 4 years ago
JonathanSalwan / Tigress_protection
View on GitHub
Playing with the Tigress software protection. Break some of its protections and solve their reverse engineering challenges. Automatic deo…
☆887Nov 21, 2023Updated 2 years ago
osirislab / dispatch
View on GitHub
Programmatic disassembly and patching
☆69Dec 30, 2016Updated 9 years ago
SQLab / symgdb
View on GitHub
SymGDB - symbolic execution plugin for gdb
☆218May 15, 2018Updated 7 years ago
joxeankoret / pigaios
View on GitHub
A tool for matching and diffing source codes directly against binaries.
☆649Jan 9, 2023Updated 3 years ago
elfmaster / taskverse
View on GitHub
A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
☆58Mar 18, 2015Updated 11 years ago