Advanced process execution monitoring utility for linux (procmon like)
☆85Mar 4, 2016Updated 10 years ago
Alternatives and similar repositories for execmon
Users that are interested in execmon are comparing it to the libraries listed below
Sorting:
- A simple fanotify example for watching events on a filesystem.☆13Sep 19, 2015Updated 10 years ago
- linux kernel system call hooking☆18Dec 13, 2014Updated 11 years ago
- ☆11Sep 26, 2019Updated 6 years ago
- A rootkit implemented as a linux kernel module☆18May 2, 2015Updated 10 years ago
- 使用kprobe获取sys_execve参数☆12Nov 22, 2018Updated 7 years ago
- EmPyre Web Interface☆12Mar 23, 2017Updated 8 years ago
- LibZeroEvil & the Research Rootkit project.☆599Dec 1, 2021Updated 4 years ago
- Redirecting File System☆26May 27, 2017Updated 8 years ago
- Using ftrace for function hooking in Linux kernel☆297Mar 21, 2021Updated 4 years ago
- midgetpack is a multiplatform secure ELF packer☆208Jul 29, 2014Updated 11 years ago
- One of the fastest binary format for JSON-like data.☆12Dec 13, 2021Updated 4 years ago
- A simple image viewer based on SDL2 and stb_image☆19Feb 2, 2026Updated last month
- Trusted Path Execution (TPE) Linux Kernel Module☆164Aug 13, 2019Updated 6 years ago
- A library for efficient interception of established TCP connections☆20Oct 12, 2015Updated 10 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)☆189Jun 24, 2019Updated 6 years ago
- Reverse shell and rootkit☆19Apr 28, 2017Updated 8 years ago
- OpenVAS Management Protocol Client for Python☆23Mar 31, 2021Updated 4 years ago
- Library of traffic redirectors☆26Apr 7, 2020Updated 5 years ago
- Ye olde root shell for ye olde httpd☆44Apr 3, 2015Updated 10 years ago
- Simple LKM linux kernel rootkit (x86 / x86_64)☆24Jun 16, 2020Updated 5 years ago
- Containerized IDA Pro (Windows/Wine), DEPRECIATED, please use https://github.com/NyaMisty/docker-wine-ida☆26Nov 23, 2017Updated 8 years ago
- Code for diskless loading of ELF Shared Library using Reflective DLL Injection☆54Feb 29, 2016Updated 10 years ago
- A toy Linux rootkit.☆13May 10, 2013Updated 12 years ago
- HIDS/EDR Demo☆15Dec 13, 2020Updated 5 years ago
- Shellcode process injector☆28May 22, 2020Updated 5 years ago
- ☆14Jun 27, 2017Updated 8 years ago
- Linux based inter-process code injection without ptrace(2)☆258Aug 24, 2017Updated 8 years ago
- Moved to https://codeberg.org/DNS-OARC/bad-packets☆19Feb 4, 2026Updated last month
- LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.☆86Aug 11, 2023Updated 2 years ago
- Attempt to use WFP for proxy interception☆10Jan 13, 2019Updated 7 years ago
- Fresh is a Qt extension library. It provide many useful classes / widgets.☆23Jun 25, 2019Updated 6 years ago
- agent 部分使用go 开发而成,采用插件模式开发而成,配置部分以及agent存活使用etcd。☆20Aug 2, 2021Updated 4 years ago
- Universal Linux LKM rootkit, designed to work in any kernel version and both architectures (i686 and x86_64).☆50Jan 15, 2024Updated 2 years ago
- A mini virtual machine written by lua☆14Jun 2, 2017Updated 8 years ago
- x100 faster implementation of GOST 34.12-2015 Kuznyechik optimized for high throughput and low latency on SSE2-capable CPUs☆22Jun 21, 2019Updated 6 years ago
- Track previous changes on specific AD accounts (users, computers) and Groups (online DC), even if event logs were wiped/not collected (e.…☆16Feb 25, 2025Updated last year
- Shim database persistence (Fin7 TTP)☆37Feb 25, 2020Updated 6 years ago
- Modified musl libc for SGX-LKL☆13Sep 28, 2020Updated 5 years ago
- A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes☆58Mar 18, 2015Updated 11 years ago