Alternatives and similar repositories for SLAE

Users that are interested in SLAE are comparing it to the libraries listed below

• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆180Updated 12 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆93Updated last year
• droberson / icmp-backdoor
  Backdoor that listens for specially crafted ICMP packets and spawns reverse shells.
  ☆73Updated 5 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 3 years ago
• milabs / stamina
  (Linux Kernel) Stack Monitoring Tool
  ☆47Updated 3 years ago
• oblique / elf-infector
  ELF binary infector
  ☆33Updated 14 years ago
• nnedkov / swiss_army_rootkit
  ☆34Updated 9 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• rootfoo / rootkit
  Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes
  ☆62Updated 6 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆87Updated 2 years ago
• nisay759 / linux-rootkits
  My little precious collection of Linux 4.x kernel rootkits
  ☆26Updated last year
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• NexusBots / Umbreon-Rootkit
  ☆65Updated 8 years ago
• landhb / DrawBridge
  Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
  ☆116Updated 2 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆67Updated 3 years ago
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆24Updated 5 years ago
• Srakai / Adun
  A way to backdoor every process
  ☆67Updated 8 years ago
• kholia / mips-hacking
  Notes on QEMU and Debian MIPS (big-endian)
  ☆45Updated 6 years ago
• maK- / reverse-shell-access-kernel-module
  This is a kernel module invoked reverse shell proof of concept.
  ☆72Updated 6 years ago
• tsarpaul / GLORYHook
  The first Linux hooking framework to allow merging two binary files into one!
  ☆96Updated 5 months ago
• rootkiter / phrack
  www.phrack.org
  ☆78Updated 2 years ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆169Updated 4 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆54Updated 2 years ago
• b1ack0wl / DVRF
  The Damn Vulnerable Router Firmware Project
  ☆31Updated 7 years ago
• stealth / fraud-bridge
  ICMP and DNS tunneling via IPv4 and IPv6
  ☆220Updated 7 months ago
• ForensicITGuy / libpreloadvaccine
  Whitelisting LD_PRELOAD libraries using LD_AUDIT
  ☆63Updated 4 years ago
• jollheef / rootkiticide
  0-ring rootkit revealer for Linux
  ☆28Updated 6 years ago
• dpl0 / phrack
  Copy of the contents at phrack.com
  ☆40Updated 7 months ago
• jrozner / slipstream
  A server and client implementation to demonstrate and test ALG abuse and perform the NAT slipstream attack described https://www.samy.pl/…
  ☆43Updated 4 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆138Updated 7 years ago