Alternatives and similar repositories for SLAE:

Users that are interested in SLAE are comparing it to the libraries listed below

• nisay759 / linux-rootkits
  My little precious collection of Linux 4.x kernel rootkits
  ☆26Updated 8 months ago
• rootfoo / rootkit
  Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes
  ☆61Updated 5 years ago
• Srakai / Adun
  A way to backdoor every process
  ☆65Updated 7 years ago
• redplait / lkcd
  ugly code to check linux kernel memory and dump some internal structures
  ☆46Updated 5 months ago
• PinkP4nther / Sutekh
  An example rootkit that gives a userland process root permissions
  ☆77Updated 5 years ago
• f0rki / bn-goloader
  go reversing helpers for binaryninja
  ☆29Updated 2 years ago
• ivision-research / gostringsr2
  Find strings in Go binaries
  ☆53Updated 5 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆28Updated 4 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆69Updated 2 years ago
• nnedkov / swiss_army_rootkit
  ☆33Updated 9 years ago
• xorrior / poseidon
  Apfell Golang macOS/Linux/Windows implant
  ☆89Updated 3 years ago
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆110Updated 5 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• glen-mac / ELF-Packer
  Simple Polymorphic x86_64 Runtime Code Segment Cryptor
  ☆57Updated 7 years ago
• djhohnstein / librarian
  Shared library loading application for Linux written in Go.
  ☆16Updated 4 years ago
• 0xN3utr0n / Noteme
  ELF packer/crypter that aims to create hardened and stealthy troyans
  ☆54Updated 3 years ago
• jollheef / rootkiticide
  0-ring rootkit revealer for Linux
  ☆28Updated 5 years ago
• xpn / ssh-inject
  A ptrace POC by hooking SSH to reveal provided passwords
  ☆181Updated 8 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆26Updated 3 years ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆165Updated 3 years ago
• narhen / procjack
  PoC of injecting code into a running Linux process
  ☆23Updated 5 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆90Updated 8 months ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆64Updated 3 years ago
• 0xdea / raptor_infiltrate19
  #INFILTRATE19 raptor's party pack.
  ☆30Updated last year
• njahrckstr / Windows_Kernel_Sploit_List
  ☆36Updated 6 years ago
• taviso / scanlimits
  Tool to examine the behaviour of setuid binaries under constrained limits.
  ☆61Updated 4 years ago
• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆170Updated 12 years ago
• milabs / stamina
  (Linux Kernel) Stack Monitoring Tool
  ☆44Updated 3 years ago