kfiros / execmon
Advanced process execution monitoring utility for linux (procmon like)
☆84Updated 8 years ago
Related projects ⓘ
Alternatives and complementary repositories for execmon
- Using ftrace for function hooking in Linux kernel☆253Updated 3 years ago
- ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)☆128Updated 6 years ago
- A Linux file system filter based on redirfs☆33Updated 5 years ago
- a linux kernel function inline hooking library☆28Updated 7 years ago
- ELF packer - x86_64☆71Updated 9 years ago
- Trusted Path Execution (TPE) Linux Kernel Module☆157Updated 5 years ago
- A small kernel module that can hook arbitrary syscalls on x86_64☆48Updated 5 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆124Updated last month
- Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)☆184Updated 5 years ago
- ☆46Updated 6 years ago
- linux elf injector for x86 x86_64 arm arm64☆317Updated 6 years ago
- Simple ELF tools written to demonstrate libelfmaster capabilities.☆38Updated 6 years ago
- Heap analysis tooling for ptmalloc☆43Updated 2 years ago
- Linux Kernel hooking engine (x86)☆333Updated 6 months ago
- Implementation of a thin hypervisor☆42Updated 8 years ago
- A Linux kernel module that locates the system call table in memory and hooks uname. Contributions welcome!☆59Updated 11 years ago
- ELF obfuscator☆63Updated 9 years ago
- ld-linux code injector☆49Updated 13 years ago
- This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)☆106Updated 6 years ago
- sample linux x86_64 ELF virus☆53Updated 6 years ago
- ☆62Updated last year
- Linux based inter-process code injection without ptrace(2)☆239Updated 7 years ago
- KVM-based virtual machine introspection for malware analysis☆27Updated 7 years ago
- Obfuscates dynamic symbol table☆134Updated 5 years ago
- Using LibVMI to detect malware☆30Updated 2 years ago
- Linux Rootkit Scanner☆85Updated 2 years ago
- Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)☆31Updated 2 years ago
- LibVMI Python bindings☆30Updated last week
- kprobes template☆52Updated 3 years ago