Alternatives and similar repositories for saruman

Users that are interested in saruman are comparing it to the libraries listed below

• stealth / injectso
  ELF DSO injector
  ☆68Updated 3 months ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆87Updated 3 years ago
• elfmaster / skeksi_virus
  Devestating and awesome Linux X86_64 ELF Virus
  ☆232Updated 3 years ago
• scumjr / the-sea-watcher
  Implementation of the SMM rootkit "The Watcher"
  ☆128Updated 3 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆87Updated 2 years ago
• antire-book / antire_book
  Example code from "Programming Linux Anti-Reversing Techniques"
  ☆98Updated 8 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆118Updated 9 years ago
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆111Updated 5 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆41Updated 7 years ago
• ixty / xarch_shellcode
  Cross Architecture Shellcode in C
  ☆205Updated 9 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆93Updated last year
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆253Updated 8 years ago
• ice799 / injectso64
  Stealth's 64bit injectso port
  ☆73Updated 15 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 7 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆188Updated 6 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆178Updated 8 years ago
• arisada / midgetpack
  midgetpack is a multiplatform secure ELF packer
  ☆204Updated 11 years ago
• elfmaster / dsym_obfuscate
  Obfuscates dynamic symbol table
  ☆135Updated 6 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆41Updated 10 years ago
• BreakingMalware / Selfie
  A Tool to Unpack Self-Modifying Code using DynamoRIO
  ☆141Updated 8 years ago
• K2 / ADMMutate
  Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia…
  ☆91Updated 2 years ago
• HexHive / malWASH
  ☆115Updated 9 years ago
• brl / grlh
  ☆92Updated 7 years ago
• dismantl / linux-injector
  Utility for injecting executable code into a running process on x86/x64 Linux
  ☆268Updated 9 years ago
• Wenzel / r2vmi
  Hypervisor-Level Debugger based on Radare2 / LibVMI, using VMI IO and debug plugins
  ☆134Updated 6 years ago
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆73Updated 10 years ago
• ancat / gremlin
  python based memory injection/introspection/etc
  ☆47Updated 2 years ago
• helpsystems / Agafi
  A gadget finder and a ROP-Chainer tool for x86 platforms
  ☆94Updated 4 years ago