kfiros / execmon
Advanced process execution monitoring utility for linux (procmon like)
☆84Updated 9 years ago
Alternatives and similar repositories for execmon:
Users that are interested in execmon are comparing it to the libraries listed below
- a linux kernel function inline hooking library☆30Updated 7 years ago
- Using ftrace for function hooking in Linux kernel☆266Updated 3 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)☆185Updated 5 years ago
- A small kernel module that can hook arbitrary syscalls on x86_64☆50Updated 5 years ago
- ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)☆130Updated 6 years ago
- linux elf injector for x86 x86_64 arm arm64☆333Updated 6 years ago
- Simple ELF tools written to demonstrate libelfmaster capabilities.☆39Updated 6 years ago
- Trusted Path Execution (TPE) Linux Kernel Module☆158Updated 5 years ago
- Implementation of a thin hypervisor☆42Updated 8 years ago
- Heap analysis tooling for ptmalloc☆44Updated 2 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆128Updated 5 months ago
- Linux Rootkit Scanner☆86Updated 3 years ago
- This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)☆107Updated 6 years ago
- ELF packer - x86_64☆71Updated 9 years ago
- A library for GDB (with python support), that adds useful functions to the standard 'gdb' library.☆77Updated 13 years ago
- extended core file snapshot format☆223Updated 6 years ago
- A ptrace library for easy syscall injection in Linux.☆175Updated 8 months ago
- Linux Kernel hooking engine (x86)☆340Updated 3 months ago
- ☆62Updated last year
- Tool tracing syscalls in a fast way using eBPF linux kernel feature☆99Updated last year
- ☆25Updated 12 years ago
- KVM-based Virtual Machine Introspection☆327Updated 4 months ago
- Hacks and experiments for the linux kernel VM subsystem.☆22Updated 2 years ago
- A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities☆334Updated 5 years ago
- ☆84Updated 8 years ago
- back up from http://people.ee.ethz.ch/~arkeller/linux/kernel_user_space_howto.html☆31Updated 9 years ago
- A very simple hypervisor for learning experience.☆136Updated 3 years ago
- a bare metal (type 1) VMM (hypervisor) with a python remote control API☆181Updated 7 years ago
- Secure EFI Loader designed to authenticate the non-PE files☆48Updated 2 years ago
- Xenpwn is a toolkit for memory access tracing using hardware-assisted virtualization☆144Updated 8 years ago