Alternatives and similar repositories for userland-exec

Users that are interested in userland-exec are comparing it to the libraries listed below

• 20urc3 / Publications
  This repository contains the public work I produced, wheter it is research, post, slides, sometimes videos, and materials of my talks.
  ☆52Updated 4 months ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆43Updated last year
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆136Updated 6 months ago
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆55Updated 9 months ago
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆53Updated last year
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆54Updated 8 months ago
• eurecom-s3 / lemon
  eBPF Memory Dump Tool
  ☆92Updated 3 months ago
• 0xdea / backdoo-rs
  A simple Meterpreter stager written in Rust.
  ☆43Updated last month
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆54Updated 5 months ago
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆75Updated 11 months ago
• p3rr0x / Blog
  ☆21Updated this week
• interruptlabs / VRDP-C-Python
  C and Python training from our Vulnerability Researcher Development Program (VRDP)
  ☆83Updated 4 months ago
• 20urc3 / Aplos
  Aplos an extremely simple fuzzer for Windows binaries.
  ☆68Updated 9 months ago
• roddux / germy
  GERMY is a Linux Kernel n-day in the N_GSM line discipline
  ☆49Updated last year
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆105Updated last year
• 20urc3 / golem
  Golem automates C/C++ vulnerability discovery with SemGrep+LLVM+LLM
  ☆94Updated 5 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆108Updated last year
• Workday / raw-disk-parser
  A tool to interact with Windows drivers to perform a raw disk read and parse out target files without calling standard Windows file APIs
  ☆98Updated 3 months ago
• SafeBreach-Labs / QuickShell
  A library and a set of tools for exploiting and communicating with Google's Quick Share devices.
  ☆47Updated 8 months ago
• skyler-ferrante / CVE-2024-28085
  WallEscape vulnerability in util-linux
  ☆52Updated last year
• xforcered / PhrackCTF
  Binary Exploitation Phrack CTF Challenge
  ☆138Updated 3 months ago
• alfarom256 / LogMeInPoCHandleDup
  ☆64Updated last year
• w1th4d / JarPlant
  Java archive implant toolkit.
  ☆61Updated 7 months ago
• hugsy / recon_2024_windbg_workshop
  ☆74Updated last year
• FuzzySecurity / BHUSA-2023
  ☆105Updated last year
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆132Updated 7 months ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆125Updated last year
• 0vercl0k / rp-bf.rs
  rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
  ☆122Updated last year
• Slowerzs / KeyJumper
  ☆51Updated 8 months ago
• hackerschoice / bpfhacks
  eBPF hacks
  ☆188Updated 11 months ago