Alternatives and similar repositories for linux-kernel-examples

Users that are interested in linux-kernel-examples are comparing it to the libraries listed below

• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆27Updated 10 months ago
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆50Updated 4 months ago
• redcanaryco / ebpfmon
  ☆89Updated last year
• Notselwyn / netkit
  Linux rootkit for educational purposes
  ☆32Updated last year
• io12 / userland-execve-rust
  An implementation of execve() in user space
  ☆31Updated 8 months ago
• akamai / Linux-Process-Injection
  ☆69Updated 8 months ago
• 01Xyris / XyrisPack
  x86 packer in masm, process hollowing, remapping ntdll
  ☆10Updated 8 months ago
• saferwall / elf
  Go library to parse Executable and Linkable Format (ELF) files.
  ☆49Updated last year
• 0xbigshaq / GenesisOS
  curiosity got me here
  ☆41Updated 11 months ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆93Updated last year
• xplshn / hidefs
  Kernel module that allows hiding files in any filesystem
  ☆14Updated 7 months ago
• zodiacon / objdir-rs
  Rust version of the objdir tool
  ☆14Updated last year
• Binary-Gecko / perf_PoC
  ☆16Updated 10 months ago
• bluedragonsecurity / bds_lkm_ftrace
  Ftrace Based Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x and 6.x on x86_64, hides files, hides process, hides bind shell & …
  ☆21Updated last year
• 0xor0ne / RoustKit
  Rust out-of-tree Linux Kernel Modules (LKMs) experimentation framework
  ☆47Updated 2 years ago
• h3xduck / RawTCP_Lib
  A C library for creating and using TCP/IP packets with raw network sockets
  ☆67Updated 7 months ago
• citronneur / blindssl
  Disable SSL certificate verification for all binaries that use libssl
  ☆49Updated 3 years ago
• vimpostor / copycat
  A library for intercepting system calls
  ☆99Updated 6 months ago
• zodiacon / TraceConnections
  Simple example for getting started with eBPF for Windows
  ☆46Updated 4 months ago
• elastic / die-rust
  Native Rust bindings for @horsicq's Detect-It-Easy
  ☆15Updated 5 months ago
• malefax / Adrishya
  Author of Project Adrishya a rootkit which use ftrace mechanism to hook syscall; (write this because God commanded me); work for both x86…
  ☆15Updated 2 months ago
• Pdawg-bytes / UEFIBootKit
  A simple UEFI bootkit made by @NSG650 and me.
  ☆25Updated 6 months ago
• hacktivesec / KRWX
  Kernel Read Write Execute
  ☆43Updated 6 months ago
• thass0 / blog-code
  Code used in blog posts
  ☆34Updated 2 months ago
• jmpr4xp4xm4n / GSM_Linux_Kernel_LPE_Nday_Exploit
  LPE exploit in the linux module n_gsm.c. This module is used to implement the GSM 07.10 multiplexing protocol. This type of error was “Ra…
  ☆41Updated last year
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆45Updated 4 years ago
• Vali-Cyber / ebpf-attacks
  A collection of bypasses and exploits for eBPF-based cloud security.
  ☆24Updated last year
• pathtofile / bpf-hookdetect
  Dectect syscall hooking using eBPF
  ☆158Updated 2 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆21Updated 2 years ago
• wkz / kmemd
  Explore a live Linux kernel's memory using GDB
  ☆115Updated 2 years ago