ex0dus-0x / wardLinks
Simple ELF runtime packer for creating self-protecting binaries
☆21Updated last year
Alternatives and similar repositories for ward
Users that are interested in ward are comparing it to the libraries listed below
Sorting:
- Find strings in Go binaries☆53Updated 5 years ago
- Fix Go obfuscated binaries that were obfuscated using gobfuscator☆47Updated 3 years ago
- Load a statically-linked ELF binary(x86 architecture) without the execve syscall.☆42Updated 4 years ago
- Rizin FLIRT Signature Database☆41Updated last year
- An ELF / PE binary packer written in pure C, made for fun☆91Updated last year
- A utility to fix intentionally corrupted UPX packed files.☆87Updated 2 years ago
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆30Updated last year
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer☆32Updated last year
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆28Updated 3 years ago
- A post-processing script for TinyTracer☆36Updated 2 years ago
- pyGoRE - Python library for analyzing Go binaries☆64Updated 3 years ago
- SPI flash read MitM attack PoC☆38Updated 3 years ago
- Experiment with Linux system calls (memfd_create, fexecve, fork...)☆22Updated 6 years ago
- ELF Virus infection techniques that work with SCOP (Secure code partitioned) executables☆15Updated 6 years ago
- Linux Kernel module-less implant (backdoor)☆72Updated 4 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆43Updated last year
- Slides, recordings and materials of my public presentations, talks and workshops.☆78Updated 2 months ago
- An Integrity-Check Monitoring Pintool☆57Updated 4 years ago
- A collection of signature files for IDA☆15Updated 9 months ago
- Ghidra scripts for recovering string definitions in Go binaries☆114Updated 6 months ago
- A command line Windows API tracing tool for Golang binaries.☆155Updated last year
- Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects☆85Updated 2 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 5 years ago
- Pure Go bindings for Zydis.☆11Updated 10 months ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆72Updated last year
- IDA's Lumina feature, reimplemented for Ghidra☆23Updated 2 years ago
- ☆15Updated 2 years ago
- A set of small utilities, helpers for PIN tracers☆33Updated last year
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆60Updated 9 months ago