elfmaster / skeksi_virus

Related projects ⓘ

Alternatives and complementary repositories for skeksi_virus

• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆128Updated 6 years ago
• elfmaster / binflow
  This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)
  ☆106Updated 6 years ago
• elfmaster / libelfmaster
  Secure ELF parsing/loading library for forensics reconstruction of malware, and robust reverse engineering tools
  ☆410Updated 2 weeks ago
• elfmaster / ecfs
  extended core file snapshot format
  ☆220Updated 5 years ago
• a13xp0p0v / kernel-hack-drill
  Linux kernel exploitation experiments
  ☆186Updated 4 months ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆184Updated 5 years ago
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆71Updated 9 years ago
• acama / xrop
  Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC
  ☆297Updated 3 months ago
• ixty / xarch_shellcode
  Cross Architecture Shellcode in C
  ☆198Updated 8 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆239Updated 7 years ago
• ucsb-seclab / leakless
  Function redirection via ELF tricks.
  ☆156Updated 9 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 6 years ago
• Cararasu / holodec
  Decompiler for x86 and x86-64 ELF binaries
  ☆216Updated 5 years ago
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆325Updated 5 years ago
• Cisco-Talos / ROPMEMU
  ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.
  ☆284Updated 8 years ago
• immunityinc / libptrace
  An event driven multi-core process debugging, tracing, and manipulation framework.
  ☆171Updated 4 years ago
• Wenzel / r2vmi
  Hypervisor-Level Debugger based on Radare2 / LibVMI, using VMI IO and debug plugins
  ☆133Updated 5 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆169Updated 7 years ago
• radareorg / radare2-bindings
  Bindings of the r2 api for Valabind and friends
  ☆131Updated 2 months ago
• elfmaster / dsym_obfuscate
  Obfuscates dynamic symbol table
  ☆134Updated 5 years ago
• antire-book / antire_book
  Example code from "Programming Linux Anti-Reversing Techniques"
  ☆97Updated 7 years ago
• MalwareTech / BasicHook
  x86 Inline hooking engine (using trampolines)
  ☆92Updated 9 years ago
• antire-book / dont_panic
  Linux bind shell with anti-reverse engineering techniques
  ☆284Updated 7 years ago
• REhints / Publications
  Conference slides and White-papers
  ☆356Updated 4 years ago
• Wenzel / pyvmidbg
  LibVMI-based debug server, implemented in Python. Building a guest aware, stealth and agentless full-system debugger
  ☆216Updated 4 years ago
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆159Updated 7 years ago
• kokjo / universalrop
  Small tool for generating ropchains using unicorn and z3
  ☆197Updated 6 years ago
• scumjr / the-sea-watcher
  Implementation of the SMM rootkit "The Watcher"
  ☆123Updated 2 years ago
• AirbusCyber / grap
  grap: define and match graph patterns within binaries
  ☆169Updated 3 years ago
• DavidBuchanan314 / pwn-mbr
  A simple MBR hijack demonstration
  ☆176Updated 2 years ago