kfiros / execmon

Related projects ⓘ

Alternatives and complementary repositories for execmon

• nccgroup / libptmalloc
  Heap analysis tooling for ptmalloc
  ☆43Updated 2 years ago
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆252Updated 3 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆184Updated 5 years ago
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆71Updated 9 years ago
• cppcoffee / inl_hook
  a linux kernel function inline hooking library
  ☆28Updated 7 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆127Updated 6 years ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆124Updated last month
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆38Updated 6 years ago
• ixty / mandibule
  linux elf injector for x86 x86_64 arm arm64
  ☆316Updated 6 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 6 years ago
• jha / linux-kernel-hook
  A small kernel module that can hook arbitrary syscalls on x86_64
  ☆47Updated 5 years ago
• cormander / tpe-lkm
  Trusted Path Execution (TPE) Linux Kernel Module
  ☆157Updated 5 years ago
• emptymonkey / ptrace_do
  A ptrace library for easy syscall injection in Linux.
  ☆173Updated 4 months ago
• elfmaster / binflow
  This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)
  ☆106Updated 5 years ago
• bitdefender / libbdvmi
  ☆62Updated last year
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆84Updated 2 years ago
• jordan9001 / superhide
  Example of hooking a linux systemcall
  ☆59Updated 6 years ago
• turbo / KPTI-PoC-Collection
  Meltdown/Spectre PoC src collection.
  ☆503Updated 6 years ago
• ebradbury / linux-syscall-hooker
  A Linux kernel module that locates the system call table in memory and hooks uname. Contributions welcome!
  ☆58Updated 11 years ago
• ivanfratric / ropguard
  Runtime Prevention of Return-Oriented Programming Attacks
  ☆82Updated 9 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆238Updated 7 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• slavaim / Linux-kernel-modules
  A collection of Linux kernel modules for educational purposes
  ☆38Updated 8 years ago
• KVM-VMI / nitro
  ☆46Updated 6 years ago
• lgeek / dynamorio_pin_escape
  ☆59Updated 8 years ago
• tianweiz07 / Cloud_Integrity
  Using LibVMI to detect malware
  ☆30Updated 2 years ago
• pmem / vltrace
  Tool tracing syscalls in a fast way using eBPF linux kernel feature
  ☆98Updated last year
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆35Updated 10 years ago