h2337 / modrevealView external linksLinks
Utility to find hidden Linux kernel modules
☆147Jul 21, 2025Updated 6 months ago
Alternatives and similar repositories for modreveal
Users that are interested in modreveal are comparing it to the libraries listed below
Sorting:
- This is a soft fork of the Megalodon app, which itself is a fork of the official Mastodon Android app.☆14Jan 27, 2023Updated 3 years ago
- A Python script that gathers all valid IP addresses from all text files from a directory, and checks them against Whois database, TOR rel…☆29Jun 27, 2022Updated 3 years ago
- ☆12Jun 29, 2021Updated 4 years ago
- Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes☆12Sep 30, 2020Updated 5 years ago
- Keylogging server and client that uses DNS tunneling/exfiltration to transmit keystrokes through firewalls.☆275Jun 16, 2024Updated last year
- LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)☆2,253Jan 24, 2026Updated 2 weeks ago
- ALPChecker - a tool to detect spoofing and blinding attacks on the ALPC interaction☆13Feb 13, 2023Updated 3 years ago
- Tool for profiling heap usage and memory management☆27Oct 31, 2021Updated 4 years ago
- ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.☆86Feb 28, 2025Updated 11 months ago
- Small toolkit for extracting information and dumping sensitive strings from Windows processes☆116Jul 17, 2024Updated last year
- A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…☆133Sep 19, 2021Updated 4 years ago
- A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.☆19Jun 24, 2021Updated 4 years ago
- Make an Linux Kernel rootkit visible again.☆59Feb 27, 2025Updated 11 months ago
- Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…☆263Dec 6, 2025Updated 2 months ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆35Oct 31, 2023Updated 2 years ago
- ☆39Jan 24, 2024Updated 2 years ago
- ☆33Sep 24, 2021Updated 4 years ago
- Linux Kernel module-less implant (backdoor)☆73Mar 11, 2021Updated 4 years ago
- Quick OSINT checks for IPs and Domains during triage and investigations.☆31Jun 26, 2024Updated last year
- Modular malware analysis artifact collection and correlation framework☆54Apr 23, 2024Updated last year
- A command line tool that resembles a debugger as well as Cheat Engine, to search for values in memory☆223May 28, 2022Updated 3 years ago
- A utility that can be used to launch an executable with a DLL injected☆19Nov 20, 2023Updated 2 years ago
- ☆25Jul 19, 2024Updated last year
- ☆80Apr 18, 2023Updated 2 years ago
- LD_PRELOAD rootkit☆138Feb 29, 2024Updated last year
- Elf binary infector written in Go.☆215Jan 11, 2025Updated last year
- Code Execution & Persistence in NETWORK SERVICE FAX Service☆34Feb 2, 2026Updated last week
- 「⚔️」Ring 0 Rootkit for Linux Kernels x86/x86_64 5.x/6.x☆27Apr 10, 2025Updated 10 months ago
- ☆26May 6, 2024Updated last year
- CVE-2021-1675 LPE PoC in Nim (PrintNightmare Local Privilege Escalation)☆18Dec 5, 2021Updated 4 years ago
- ☆35Dec 6, 2023Updated 2 years ago
- Docker container for running CobaltStrike 4.10☆38Sep 18, 2024Updated last year
- Elegant and powerful Go enums with zero code generation☆41Jan 2, 2025Updated last year
- Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects☆86Oct 2, 2022Updated 3 years ago
- ☆153Jul 31, 2022Updated 3 years ago
- Tool to start processes as SYSTEM using token duplication☆38Oct 27, 2020Updated 5 years ago
- Framework for generating audit commands for Unix security audits☆66Aug 1, 2023Updated 2 years ago
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 5 months ago
- A tool for harvesting sysadmin credentials in Linux☆19Jul 10, 2024Updated last year