Alternatives and similar repositories for ward

Users that are interested in ward are comparing it to the libraries listed below

• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆93Updated last year
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆43Updated 4 years ago
• kryptoslogic / binja_degobfuscate
  Fix Go obfuscated binaries that were obfuscated using gobfuscator
  ☆47Updated 3 years ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆167Updated 3 years ago
• melotic / rekk
  rekk is set of tools written in Rust to obfuscate ELF & PE executables with nanomites.
  ☆31Updated 7 months ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆30Updated last year
• n4sm / AD_1DA
  Another linux ELF packer to evade hash detection.
  ☆35Updated 3 years ago
• GunshipPenguin / kiteshield
  Packer/Protector for x86-64 ELF binaries on Linux
  ☆157Updated 3 years ago
• turekt / knockknockgo
  Pure Go rewrite of knockknock
  ☆10Updated 2 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 3 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆73Updated 4 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆21Updated 2 years ago
• carloslack / volundr
  Just another elf parser
  ☆25Updated last year
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆88Updated 2 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆72Updated last year
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago
• killvxk / awesome-obfuscations
  ☆51Updated last month
• svv232 / 1nsanity
  LLVM pass that obfuscates against symbolic execution
  ☆75Updated 6 years ago
• Binject / forger
  ☆20Updated 6 years ago
• h311d1n3r / HellTracer
  A Linux x86/x86-64 tool to trace registers and memory regions.
  ☆38Updated 3 years ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆111Updated 2 years ago
• rizinorg / sigdb
  Rizin FLIRT Signature Database
  ☆43Updated last year
• avast / pe_tools
  A cross-platform Python toolkit for parsing/writing PE files.
  ☆67Updated last year
• r4j0x00 / funcryptor
  Encrypt C functions
  ☆40Updated 2 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 6 months ago
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆33Updated last year
• EliseZeroTwo / SEH-Helper
  Binary Ninja plugin for exploring Structured Exception Handlers
  ☆81Updated last year
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆29Updated 3 years ago
• dsnezhkov / elfpack
  ☆47Updated 3 years ago