Alternatives and similar repositories for execmon

Users that are interested in execmon are comparing it to the libraries listed below

• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆135Updated 7 years ago
• cormander / tpe-lkm
  Trusted Path Execution (TPE) Linux Kernel Module
  ☆160Updated 5 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 7 years ago
• cppcoffee / inl_hook
  a linux kernel function inline hooking library
  ☆30Updated 7 years ago
• emptymonkey / ptrace_do
  A ptrace library for easy syscall injection in Linux.
  ☆181Updated last year
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆185Updated 6 years ago
• ebradbury / linux-syscall-hooker
  A Linux kernel module that locates the system call table in memory and hooks uname. Contributions welcome!
  ☆58Updated 12 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆39Updated 6 years ago
• nccgroup / libptmalloc
  Heap analysis tooling for ptmalloc
  ☆45Updated 3 years ago
• jha / linux-kernel-hook
  A small kernel module that can hook arbitrary syscalls on x86_64
  ☆52Updated 5 years ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆130Updated 9 months ago
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆72Updated 9 years ago
• arisada / midgetpack
  midgetpack is a multiplatform secure ELF packer
  ☆204Updated 10 years ago
• milabs / khook
  Linux Kernel hooking engine (x86)
  ☆350Updated 7 months ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆89Updated 3 years ago
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆36Updated 11 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Updated last year
• packz / binary-encryption
  Original code about binary encryption from phrack
  ☆71Updated 13 years ago
• ixty / mandibule
  linux elf injector for x86 x86_64 arm arm64
  ☆337Updated 7 years ago
• sduverger / ld-shatner
  ld-linux code injector
  ☆49Updated 13 years ago
• elfmaster / binflow
  This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)
  ☆109Updated 6 years ago
• honeynet / sebek
  ☆25Updated 12 years ago
• sploitfun / lsploits
  Linux Exploits
  ☆139Updated 10 years ago
• KVM-VMI / nitro
  ☆47Updated 6 years ago
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆275Updated 4 years ago
• elfmaster / ftrace
  POSIX Function tracing
  ☆336Updated 7 years ago
• elfmaster / dsym_obfuscate
  Obfuscates dynamic symbol table
  ☆134Updated 6 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆252Updated 7 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• elfmaster / ecfs
  extended core file snapshot format
  ☆226Updated 6 years ago