Alternatives and similar repositories for scop_virus_paper:

Users that are interested in scop_virus_paper are comparing it to the libraries listed below

• ulexec / ElfLocker
  PoC multi-layer protector for ELF32 x86 binaries
  ☆11Updated 3 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 3 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆29Updated 5 years ago
• Vector35 / sample_plugin
  Sample Binary Ninja Plugin
  ☆22Updated last year
• bnbdr / swisscheese
  Exploits for YARA 3.7.1 & 3.8.1
  ☆31Updated 6 years ago
• aguinet / miasm-bootloader
  x86 bootloader emulation with Miasm (case of NotPetya)
  ☆42Updated 5 years ago
• atredis-jordan / SymbolicTriagePost
  Supporting Materials for “Symbolic Triage” blog post
  ☆24Updated 2 years ago
• JannisKirschner / Cutter-Yara-Plugin
  Apply YARA rules to your Cutter projects.
  ☆16Updated 5 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆64Updated 3 years ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆28Updated last year
• shamrockhoax / mazedecoder
  ☆28Updated 5 years ago
• long123king / dk
  dk is a WinDbg extenion for dumping memory data in meaningful and organized ways, it is an enhancement of my previous tokenext project.
  ☆24Updated last year
• JeremyBlackthorne / PE-Runtime-Data-Structures
  ☆18Updated 6 years ago
• nccgroup / ICPin
  An Integrity-Check Monitoring Pintool
  ☆57Updated 4 years ago
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆110Updated 5 years ago
• RICSecLab / AFLplusplus-cs
  ☆18Updated 3 years ago
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆32Updated last year
• h0mbre / syscall
  ☆18Updated 5 years ago
• PinkNoize / shelf-loader-poc
  ☆12Updated 3 years ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆43Updated last year
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆28Updated 4 years ago
• s0i37 / winafl_inmemory
  WINAFL for blackbox in-memory fuzzing (PIN)
  ☆46Updated 5 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• zxgio / ghidra_stack_strings
  A script to detect stack-strings by using emulation (leveraging Unicorn)
  ☆35Updated last year
• rhelmot / dumpsterdiver
  A tool to interactively explore the heap of a python process
  ☆25Updated 4 years ago
• mechanicalnull / phantasm
  Binary Ninja plugin for visualizing coverage over time
  ☆25Updated 3 years ago
• DavidCatalan / fridacov
  JS modules for Frida based tools to add code coverage to your instrumentation scripts.
  ☆25Updated 6 years ago
• dsnezhkov / elfpack
  ☆47Updated 2 years ago
• picoflamingo / pocrypt
  Naive Proof of Concept Crypter for GNU/Linux ELF64
  ☆11Updated 7 years ago
• JacobPimental / r2-gohelper
  gopclntab finder and analyzer for Radare2
  ☆20Updated 4 years ago