Alternatives and similar repositories for mandibule

Users that are interested in mandibule are comparing it to the libraries listed below

• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆250Updated 7 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆135Updated 7 years ago
• SheLLVM / SheLLVM
  A collection of LLVM transform and analysis passes to write shellcode in regular C
  ☆374Updated 2 years ago
• zznop / drow
  Injects code into ELF executables post-build
  ☆233Updated last year
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆177Updated 7 years ago
• milabs / khook
  Linux Kernel hooking engine (x86)
  ☆348Updated 6 months ago
• elfmaster / libelfmaster
  Secure ELF parsing/loading library for forensics reconstruction of malware, and robust reverse engineering tools
  ☆439Updated last month
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆273Updated 4 years ago
• koutto / ioctlbf
  Windows Kernel Drivers fuzzer
  ☆349Updated 8 years ago
• maroueneboubakri / lscan
  lscan is a library identification tool on statically linked/stripped binaries
  ☆405Updated 4 years ago
• push0ebp / ALLirt
  Tool that converts All of libc to signatures for IDA Pro FLIRT Plugin. and utility make sig with FLAIR easily
  ☆167Updated 2 years ago
• 0xKira / qemu-vm-escape
  ☆282Updated 5 years ago
• k0keoyo / kDriver-Fuzzer
  ☆472Updated 7 years ago
• Boyan-MILANOV / ropium
  ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together
  ☆386Updated 2 years ago
• meme / hellscape
  GIMPLE obfuscator for C, C++, Go, ... all supported GCC targets and front-ends that use GIMPLE.
  ☆400Updated 4 years ago
• googleprojectzero / bochspwn
  A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
  ☆337Updated 6 years ago
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆110Updated 5 years ago
• NoviceLive / research-rootkit
  LibZeroEvil & the Research Rootkit project.
  ☆593Updated 3 years ago
• jha / linux-kernel-hook
  A small kernel module that can hook arbitrary syscalls on x86_64
  ☆52Updated 5 years ago
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆305Updated 6 years ago
• RPISEC / llvm-deobfuscator
  ☆419Updated 4 years ago
• malisal / loaders
  Tiny loaders for various binary formats.
  ☆238Updated 9 years ago
• tinysec / windows-syscall-table
  windows syscall table from xp ~ 10 rs4
  ☆353Updated 7 years ago
• xpn / ssh-inject
  A ptrace POC by hooking SSH to reveal provided passwords
  ☆182Updated 8 years ago
• yellowbyte / analysis-of-anti-analysis
  writings on anti-reverse engineering.
  ☆285Updated 3 years ago
• patois / HRDevHelper
  HexRays ctree visualization plugin
  ☆412Updated 9 months ago
• Hackerl / pangolin
  Inject ELF into remote process
  ☆142Updated last year
• nccgroup / idahunt
  idahunt is a framework to analyze binaries with IDA Pro and hunt for things in IDA Pro
  ☆387Updated last year
• FSecureLABS / KernelFuzzer
  Cross Platform Kernel Fuzzer Framework
  ☆450Updated 6 years ago
• mandiant / flare-emu
  ☆851Updated 7 months ago