Alternatives and similar repositories for saruman

Users that are interested in saruman are comparing it to the libraries listed below

• scumjr / the-sea-watcher
  Implementation of the SMM rootkit "The Watcher"
  ☆128Updated 3 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• elfmaster / skeksi_virus
  Devestating and awesome Linux X86_64 ELF Virus
  ☆231Updated 2 years ago
• stealth / injectso
  ELF DSO injector
  ☆65Updated last month
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Updated 2 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆89Updated 3 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆92Updated last year
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆40Updated 6 years ago
• antire-book / antire_book
  Example code from "Programming Linux Anti-Reversing Techniques"
  ☆99Updated 8 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 8 years ago
• ixty / xarch_shellcode
  Cross Architecture Shellcode in C
  ☆203Updated 8 years ago
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆110Updated 5 years ago
• arisada / midgetpack
  midgetpack is a multiplatform secure ELF packer
  ☆203Updated 11 years ago
• BreakingMalware / Selfie
  A Tool to Unpack Self-Modifying Code using DynamoRIO
  ☆141Updated 8 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆186Updated 6 years ago
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆73Updated 10 years ago
• dismantl / linux-injector
  Utility for injecting executable code into a running process on x86/x64 Linux
  ☆268Updated 9 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆251Updated 7 years ago
• ice799 / injectso64
  Stealth's 64bit injectso port
  ☆73Updated 15 years ago
• HexHive / malWASH
  ☆115Updated 9 years ago
• gdelugre / shell-factory
  C++-based shellcode builder
  ☆114Updated 4 years ago
• whatsbcn / skpd
  Process dump to executable ELF for linux
  ☆105Updated 3 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆177Updated 7 years ago
• ivanfratric / ropguard
  Runtime Prevention of Return-Oriented Programming Attacks
  ☆81Updated 10 years ago
• nccgroup / libptmalloc
  Heap analysis tooling for ptmalloc
  ☆45Updated 3 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 7 years ago
• K2 / ADMMutate
  Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia…
  ☆90Updated last year
• IOActive / Melkor_ELF_Fuzzer
  Melkor is a very intuitive and easy-to-use ELF file format fuzzer to find functional and security bugs in ELF parsers.
  ☆152Updated last year
• elfmaster / dsym_obfuscate
  Obfuscates dynamic symbol table
  ☆134Updated 6 years ago