elfmaster / sarumanLinks
ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
☆136Updated 7 years ago
Alternatives and similar repositories for saruman
Users that are interested in saruman are comparing it to the libraries listed below
Sorting:
- Implementation of the SMM rootkit "The Watcher"☆128Updated 3 years ago
- A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes☆58Updated 10 years ago
- LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.☆86Updated 2 years ago
- Example code from "Programming Linux Anti-Reversing Techniques"☆98Updated 8 years ago
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆110Updated 5 years ago
- Linux Rootkit Scanner☆89Updated 3 years ago
- Linux based inter-process code injection without ptrace(2)☆253Updated 8 years ago
- Devestating and awesome Linux X86_64 ELF Virus☆232Updated 2 years ago
- Cross Architecture Shellcode in C☆205Updated 9 years ago
- ELF DSO injector☆67Updated 2 months ago
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆117Updated 9 years ago
- Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia…☆90Updated last year
- Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)☆187Updated 6 years ago
- Linux v4.x.x Rootkit☆93Updated last year
- sample linux x86_64 ELF virus☆53Updated 7 years ago
- Rootkit Detector for UNIX☆61Updated 2 years ago
- Simple ELF tools written to demonstrate libelfmaster capabilities.☆41Updated 6 years ago
- midgetpack is a multiplatform secure ELF packer☆203Updated 11 years ago
- Stealth's 64bit injectso port☆73Updated 15 years ago
- Obfuscates dynamic symbol table☆134Updated 6 years ago
- Melkor is a very intuitive and easy-to-use ELF file format fuzzer to find functional and security bugs in ELF parsers.☆151Updated last year
- C++-based shellcode builder☆115Updated 4 years ago
- A Tool to Unpack Self-Modifying Code using DynamoRIO☆141Updated 8 years ago
- ELF packer - x86_64☆73Updated 10 years ago
- A LKM rootkit for most newer kernel versions.☆177Updated 7 years ago
- Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)☆39Updated 10 years ago
- Heap analysis tooling for ptmalloc☆45Updated 3 years ago
- Materials for the Evolutionary Kernel Fuzzing talk at Black Hat USA 2017☆69Updated 7 years ago
- ROPME is a set of python scripts to generate ROP gadgets and payload.☆148Updated 9 years ago
- Runtime Prevention of Return-Oriented Programming Attacks☆82Updated 10 years ago