Alternatives and similar repositories for saruman

Users that are interested in saruman are comparing it to the libraries listed below

• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆116Updated 8 years ago
• elfmaster / skeksi_virus
  Devestating and awesome Linux X86_64 ELF Virus
  ☆229Updated 2 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Updated last year
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆110Updated 5 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆248Updated 7 years ago
• ixty / xarch_shellcode
  Cross Architecture Shellcode in C
  ☆200Updated 8 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆39Updated 6 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆88Updated 3 years ago
• elfmaster / dsym_obfuscate
  Obfuscates dynamic symbol table
  ☆134Updated 6 years ago
• BreakingMalware / Selfie
  A Tool to Unpack Self-Modifying Code using DynamoRIO
  ☆141Updated 8 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆186Updated 5 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆132Updated 9 years ago
• HexHive / malWASH
  ☆115Updated 8 years ago
• Cr4sh / ioctlfuzzer
  Automatically exported from code.google.com/p/ioctlfuzzer
  ☆162Updated 9 years ago
• packz / ropeme
  ROPME is a set of python scripts to generate ROP gadgets and payload.
  ☆148Updated 9 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆182Updated 6 years ago
• gdelugre / shell-factory
  C++-based shellcode builder
  ☆113Updated 4 years ago
• immunityinc / libptrace
  An event driven multi-core process debugging, tracing, and manipulation framework.
  ☆175Updated 5 years ago
• saaramar / execve_exploit
  Hardcore corruption of my execve() vulnerability in WSL
  ☆215Updated 7 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 6 years ago
• ohjeongwook / DarunGrim
  A patch analysis tool
  ☆363Updated 4 years ago
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆72Updated 9 years ago
• mxmssh / drAFL
  AFL + DynamoRIO = fuzzing binaries with no source code on Linux
  ☆248Updated 5 years ago
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆450Updated 6 years ago
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆301Updated 6 years ago
• scumjr / the-sea-watcher
  Implementation of the SMM rootkit "The Watcher"
  ☆126Updated 3 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆90Updated 9 months ago
• corelan / win10_heap
  Collection of VC++ example applications to demonstrate Win10 userland heap behavior (BEA & FEA)
  ☆84Updated 8 years ago
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆336Updated 6 years ago