elfmaster / linker_preloading_virusLinks
An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
☆66Updated 3 years ago
Alternatives and similar repositories for linker_preloading_virus
Users that are interested in linker_preloading_virus are comparing it to the libraries listed below
Sorting:
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆28Updated 3 years ago
- Matryoshka - stacked LKM loader☆52Updated last year
- Rootkit spotter - experimental Linux rootkit finder LKM☆30Updated 4 years ago
- Code injection from Linux kernel to a process☆21Updated 2 years ago
- Linux Kernel module-less implant (backdoor)☆72Updated 4 years ago
- In line function hooking LKM rootkit☆51Updated 5 years ago
- ELF binary forensics tool for APT, virus, backdoor and rootkit detection☆48Updated 6 months ago
- ☆47Updated 2 years ago
- ELF Virus infection techniques that work with SCOP (Secure code partitioned) executables☆15Updated 6 years ago
- Shiva is a programmable dynamic linker for loading ELF microprograms☆32Updated last year
- ☆48Updated 4 years ago
- yet another hidden LKM hunter☆23Updated last year
- A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…☆127Updated 3 years ago
- Reverse text segment x64 ELF infector written in Assembly☆20Updated 3 years ago
- Linux rootkit for educational purposes☆31Updated last year
- One Bootloader to Load Them All - Research materials, Code , Etc.☆52Updated 2 years ago
- Abusing exceptions for code execution.☆111Updated 2 years ago
- SentinelOne's KeRnel Exploits Advanced Mitigations☆54Updated 6 years ago
- A collection of Linux kernel rootkits found across the internet taken and put together☆74Updated 2 years ago
- Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)☆72Updated last year
- Proof of concept for injecting simple shellcode via ptrace into a running process.☆69Updated 2 years ago
- SPI flash read MitM attack PoC☆38Updated 3 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- ☆12Updated 3 years ago
- ☆14Updated 3 years ago
- PoC for CVE-2021-32537: an out-of-bounds memory access that leads to pool corruption in the Windows kernel.☆57Updated 3 years ago
- PoC multi-layer protector for ELF32 x86 binaries☆11Updated 3 years ago
- ELF packer/crypter that aims to create hardened and stealthy troyans☆54Updated 3 years ago
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆110Updated 5 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago