Alternatives and similar repositories for execmon:

Users that are interested in execmon are comparing it to the libraries listed below

• cppcoffee / inl_hook
  a linux kernel function inline hooking library
  ☆30Updated 7 years ago
• jha / linux-kernel-hook
  A small kernel module that can hook arbitrary syscalls on x86_64
  ☆52Updated 5 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆185Updated 5 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆131Updated 7 years ago
• sduverger / ld-shatner
  ld-linux code injector
  ☆49Updated 13 years ago
• cormander / tpe-lkm
  Trusted Path Execution (TPE) Linux Kernel Module
  ☆158Updated 5 years ago
• elfmaster / binflow
  This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)
  ☆107Updated 6 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆39Updated 6 years ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆128Updated 5 months ago
• honeynet / sebek
  ☆25Updated 12 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 6 years ago
• KVM-VMI / nitro
  ☆47Updated 6 years ago
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆71Updated 9 years ago
• bitdefender / libbdvmi
  ☆62Updated last year
• finallyjustice / qemu-vmi
  Virtual Machine Introspection (VMI) project
  ☆15Updated 9 years ago
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆266Updated 4 years ago
• arisada / midgetpack
  midgetpack is a multiplatform secure ELF packer
  ☆198Updated 10 years ago
• ixty / mandibule
  linux elf injector for x86 x86_64 arm arm64
  ☆333Updated 6 years ago
• nccgroup / libptmalloc
  Heap analysis tooling for ptmalloc
  ☆44Updated 2 years ago
• UNCSecLab / VMXXNR
  Implementation of a thin hypervisor
  ☆42Updated 8 years ago
• milabs / khook
  Linux Kernel hooking engine (x86)
  ☆337Updated 3 months ago
• slavaim / redirfs
  A Linux file system filter based on redirfs
  ☆33Updated 5 years ago
• pmem / vltrace
  Tool tracing syscalls in a fast way using eBPF linux kernel feature
  ☆99Updated 2 years ago
• elfmaster / dsym_obfuscate
  Obfuscates dynamic symbol table
  ☆135Updated 6 years ago
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆36Updated 10 years ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆243Updated 7 years ago
• vnik5287 / kernel_rop
  ☆84Updated 8 years ago
• ivanfratric / ropguard
  Runtime Prevention of Return-Oriented Programming Attacks
  ☆82Updated 9 years ago
• ebradbury / linux-syscall-hooker
  A Linux kernel module that locates the system call table in memory and hooks uname. Contributions welcome!
  ☆59Updated 11 years ago
• zer0mem / HyperVisor
  microVM
  ☆48Updated 9 years ago