Alternatives and similar repositories for linux-kernel-examples

Users that are interested in linux-kernel-examples are comparing it to the libraries listed below

• akamai / Linux-Process-Injection
  ☆88Updated last year
• 0xbigshaq / GenesisOS
  curiosity got me here
  ☆45Updated last year
• xplshn / hidefs
  Kernel module that allows hiding files in any filesystem
  ☆23Updated last year
• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆30Updated last year
• h3xduck / RawTCP_Lib
  A C library for creating and using TCP/IP packets with raw network sockets
  ☆70Updated last year
• guitmz / midrashim
  PT_NOTE to PT_LOAD x64 ELF infector written in Assembly
  ☆49Updated 4 years ago
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆56Updated 9 months ago
• elfmaster / shiva
  Shiva is a programmable dynamic linker for loading ELF microprograms
  ☆34Updated 2 years ago
• Vali-Cyber / ebpf-attacks
  A collection of bypasses and exploits for eBPF-based cloud security.
  ☆25Updated last year
• wkz / kmemd
  Explore a live Linux kernel's memory using GDB
  ☆117Updated 3 years ago
• hacktivesec / KRWX
  Kernel Read Write Execute
  ☆46Updated 11 months ago
• Binary-Gecko / perf_PoC
  ☆16Updated last year
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆136Updated 7 months ago
• bluedragonsecurity / bds_lkm_ftrace
  Ftrace Based Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x and 6.x on x86_64, hides files, hides process, hides bind shell & …
  ☆28Updated 2 years ago
• io12 / userland-execve-rust
  An implementation of execve() in user space
  ☆35Updated last year
• hardenedvault / ved-ebpf
  VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
  ☆167Updated last year
• redcanaryco / ebpfmon
  ☆89Updated last month
• mebeim / linux-syscalls
  🌐🐧 Browsable Linux kernel syscall tables built with Systrack (https://github.com/mebeim/systrack)
  ☆211Updated 3 months ago
• hardenedlinux / userland-exec
  Userland exec PoC to be used as attack vector technique
  ☆93Updated 2 months ago
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆54Updated last year
• cppio / uefi-backdoor
  A UEFI Application that hooks SetVariable to allow a user-space program to access kernel memory.
  ☆20Updated 5 years ago
• armosec / curing
  io_uring based rootkit
  ☆246Updated 8 months ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆106Updated last year
• gfoudree / UEFIBootkit
  Simple PoC for a bootkit written as a UEFI Option ROM Driver
  ☆11Updated 3 years ago
• hugsy / ropgadget-rs
  Another (bad) ROP gadget finder, but this time in Rust
  ☆21Updated last year
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆34Updated last year
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆24Updated 2 years ago
• zodiacon / TraceConnections
  Simple example for getting started with eBPF for Windows
  ☆48Updated 10 months ago
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆35Updated 2 months ago
• citronneur / blindssl
  Disable SSL certificate verification for all binaries that use libssl
  ☆48Updated 3 years ago