Alternatives and similar repositories for saruman

Users that are interested in saruman are comparing it to the libraries listed below

• scumjr / the-sea-watcher
  Implementation of the SMM rootkit "The Watcher"
  ☆128Updated 3 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Updated 2 years ago
• antire-book / antire_book
  Example code from "Programming Linux Anti-Reversing Techniques"
  ☆98Updated 8 years ago
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆110Updated 5 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆89Updated 3 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆253Updated 8 years ago
• elfmaster / skeksi_virus
  Devestating and awesome Linux X86_64 ELF Virus
  ☆232Updated 2 years ago
• ixty / xarch_shellcode
  Cross Architecture Shellcode in C
  ☆205Updated 9 years ago
• stealth / injectso
  ELF DSO injector
  ☆67Updated 2 months ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 9 years ago
• K2 / ADMMutate
  Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia…
  ☆90Updated last year
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆187Updated 6 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆93Updated last year
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 7 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆41Updated 6 years ago
• arisada / midgetpack
  midgetpack is a multiplatform secure ELF packer
  ☆203Updated 11 years ago
• ice799 / injectso64
  Stealth's 64bit injectso port
  ☆73Updated 15 years ago
• elfmaster / dsym_obfuscate
  Obfuscates dynamic symbol table
  ☆134Updated 6 years ago
• IOActive / Melkor_ELF_Fuzzer
  Melkor is a very intuitive and easy-to-use ELF file format fuzzer to find functional and security bugs in ELF parsers.
  ☆151Updated last year
• gdelugre / shell-factory
  C++-based shellcode builder
  ☆115Updated 4 years ago
• BreakingMalware / Selfie
  A Tool to Unpack Self-Modifying Code using DynamoRIO
  ☆141Updated 8 years ago
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆73Updated 10 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆177Updated 7 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆39Updated 10 years ago
• nccgroup / libptmalloc
  Heap analysis tooling for ptmalloc
  ☆45Updated 3 years ago
• richinseattle / EvolutionaryKernelFuzzing
  Materials for the Evolutionary Kernel Fuzzing talk at Black Hat USA 2017
  ☆69Updated 7 years ago
• packz / ropeme
  ROPME is a set of python scripts to generate ROP gadgets and payload.
  ☆148Updated 9 years ago
• ivanfratric / ropguard
  Runtime Prevention of Return-Oriented Programming Attacks
  ☆82Updated 10 years ago