kfiros / execmon
Advanced process execution monitoring utility for linux (procmon like)
☆84Updated 9 years ago
Alternatives and similar repositories for execmon:
Users that are interested in execmon are comparing it to the libraries listed below
- a linux kernel function inline hooking library☆30Updated 7 years ago
- A small kernel module that can hook arbitrary syscalls on x86_64☆52Updated 5 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)☆185Updated 5 years ago
- ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)☆131Updated 7 years ago
- ld-linux code injector☆49Updated 13 years ago
- Trusted Path Execution (TPE) Linux Kernel Module☆158Updated 5 years ago
- This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)☆107Updated 6 years ago
- Simple ELF tools written to demonstrate libelfmaster capabilities.☆39Updated 6 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆128Updated 5 months ago
- ☆25Updated 12 years ago
- sample linux x86_64 ELF virus☆53Updated 6 years ago
- ☆47Updated 6 years ago
- ELF packer - x86_64☆71Updated 9 years ago
- ☆62Updated last year
- Virtual Machine Introspection (VMI) project☆15Updated 9 years ago
- Using ftrace for function hooking in Linux kernel☆266Updated 4 years ago
- midgetpack is a multiplatform secure ELF packer☆198Updated 10 years ago
- linux elf injector for x86 x86_64 arm arm64☆333Updated 6 years ago
- Heap analysis tooling for ptmalloc☆44Updated 2 years ago
- Implementation of a thin hypervisor☆42Updated 8 years ago
- Linux Kernel hooking engine (x86)☆337Updated 3 months ago
- A Linux file system filter based on redirfs☆33Updated 5 years ago
- Tool tracing syscalls in a fast way using eBPF linux kernel feature☆99Updated 2 years ago
- Obfuscates dynamic symbol table☆135Updated 6 years ago
- Linux kernel rootkit to hide certain files and processes.☆36Updated 10 years ago
- Linux based inter-process code injection without ptrace(2)☆243Updated 7 years ago
- ☆84Updated 8 years ago
- Runtime Prevention of Return-Oriented Programming Attacks☆82Updated 9 years ago
- A Linux kernel module that locates the system call table in memory and hooks uname. Contributions welcome!☆59Updated 11 years ago
- microVM☆48Updated 9 years ago