Alternatives and similar repositories for linux-kernel-examples

Users that are interested in linux-kernel-examples are comparing it to the libraries listed below

• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆27Updated 8 months ago
• akamai / Linux-Process-Injection
  ☆56Updated 6 months ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆91Updated last year
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆29Updated 2 years ago
• Notselwyn / netkit
  Linux rootkit for educational purposes
  ☆31Updated last year
• Pdawg-bytes / UEFIBootKit
  A simple UEFI bootkit made by @NSG650 and me.
  ☆26Updated 5 months ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆21Updated 2 years ago
• redcanaryco / ebpfmon
  ☆88Updated 11 months ago
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆45Updated 2 months ago
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆32Updated last year
• zodiacon / objdir-rs
  Rust version of the objdir tool
  ☆13Updated last year
• zodiacon / TraceConnections
  Simple example for getting started with eBPF for Windows
  ☆44Updated 3 months ago
• xplshn / hidefs
  Kernel module that allows hiding files in any filesystem
  ☆13Updated 5 months ago
• saferwall / elf
  Go library to parse Executable and Linkable Format (ELF) files.
  ☆49Updated 11 months ago
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆30Updated 5 months ago
• Binary-Gecko / perf_PoC
  ☆16Updated 8 months ago
• 0xbigshaq / GenesisOS
  curiosity got me here
  ☆41Updated 10 months ago
• Vali-Cyber / ebpf-attacks
  A collection of bypasses and exploits for eBPF-based cloud security.
  ☆22Updated last year
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆114Updated last week
• 01Xyris / XyrisPack
  x86 packer in masm, process hollowing, remapping ntdll
  ☆10Updated 6 months ago
• bluedragonsecurity / bds_lkm_ftrace
  Ftrace Based Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x and 6.x on x86_64, hides files, hides process, hides bind shell & …
  ☆19Updated last year
• jmpr4xp4xm4n / GSM_Linux_Kernel_LPE_Nday_Exploit
  LPE exploit in the linux module n_gsm.c. This module is used to implement the GSM 07.10 multiplexing protocol. This type of error was “Ra…
  ☆41Updated 11 months ago
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆42Updated 4 years ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• Fare9 / elfparser_e
  Example of an ELF parser to learn about the ELF format
  ☆10Updated 7 months ago
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆23Updated last year
• citronneur / blindssl
  Disable SSL certificate verification for all binaries that use libssl
  ☆49Updated 2 years ago
• theo-abel / awesome-anti-virtualization
  A curated list of awesome resources related to anti virtualization techniques
  ☆51Updated last month
• nickswang / kubekit
  kubernetes rootkit
  ☆31Updated last year
• POPFD / cascade
  A thin introspection hypervisor framework that allows for low level resource manipulation.
  ☆13Updated last year