Alternatives and similar repositories for EvilVM

Users that are interested in EvilVM are comparing it to the libraries listed below

• fishstiqz / nasmshell
  shell for nasm
  ☆65Updated 5 years ago
• hatRiot / shellme
  simple shellcode generator
  ☆114Updated 8 years ago
• netspooky / reversi
  Generate very tiny reverse shell binaries for Linux~
  ☆76Updated 5 years ago
• K2 / ADMMutate
  Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia…
  ☆95Updated last month
• josh0xA / threadfire
  PoC Thread Execution Hijacking for Win32 Code Injection
  ☆178Updated last year
• XiphosResearch / netelf
  Run executables from memory, over the network, on Windows, Linux, OpenVMS... routers... spaceships... toasters etc.
  ☆284Updated 8 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• darkspik3 / Valhalla-ezines
  ☆34Updated 8 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆156Updated 2 years ago
• FuzzySecurity / Capcom-Rootkit
  Capcom Rootkit POC
  ☆207Updated 8 years ago
• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆181Updated 13 years ago
• praetorian-inc / vulcan
  a tool to make it easy and fast to test various forms of injection
  ☆173Updated 6 years ago
• stealth / psc
  E2E encryption for multi-hop tty sessions or portshells + TCP/UDP port forward
  ☆132Updated last year
• red4000 / ZMIST
  Updated z0mbie MISTFALL engine
  ☆17Updated 8 years ago
• Antonin-Deniau / cave_miner
  Search for code cave in all binaries
  ☆284Updated 3 months ago
• 0xN3utr0n / Noteme
  ELF packer/crypter that aims to create hardened and stealthy troyans
  ☆58Updated 4 years ago
• netspooky / i2ao
  Intro to Assembly Optimization stream repo
  ☆30Updated 4 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆74Updated 3 years ago
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆72Updated 7 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆185Updated 6 years ago
• LucaBongiorni / jellyfish
  GPU rootkit PoC by Team Jellyfish
  ☆100Updated 10 years ago
• tsarpaul / GLORYHook
  The first Linux hooking framework to allow merging two binary files into one!
  ☆97Updated 8 months ago
• opsxcq / mirror-vxheaven.org
  Vxheaven.org website's mirror
  ☆178Updated 7 years ago
• paranoidninja / Botnet-blogpost
  This repo basically contains the code that was mentioned in the blogposts that was written by me at:
  ☆99Updated 3 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆133Updated 2 years ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆171Updated 4 years ago
• amitwaisel / Malproxy
  Proxy system calls over an RPC channel
  ☆100Updated 3 years ago
• redcode-labs / BMJ
  Code snippets for bare-metal malware development
  ☆98Updated 3 years ago
• dalvarezperez / CreateFile_based_rootkit
  ☆138Updated 2 months ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago