Alternatives and similar repositories for execmon

Users that are interested in execmon are comparing it to the libraries listed below

• cormander / tpe-lkm
  Trusted Path Execution (TPE) Linux Kernel Module
  ☆163Updated 6 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆139Updated 7 years ago
• honeynet / sebek
  ☆25Updated 12 years ago
• emptymonkey / ptrace_do
  A ptrace library for easy syscall injection in Linux.
  ☆183Updated last year
• ebradbury / linux-syscall-hooker
  A Linux kernel module that locates the system call table in memory and hooks uname. Contributions welcome!
  ☆57Updated 12 years ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆132Updated last year
• sebastiencs / Packer_ELF
  ELF packer - x86_64
  ☆73Updated 10 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆188Updated 6 years ago
• nccgroup / libptmalloc
  Heap analysis tooling for ptmalloc
  ☆46Updated 3 years ago
• cppcoffee / inl_hook
  a linux kernel function inline hooking library
  ☆30Updated 8 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆41Updated 7 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 7 years ago
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆290Updated 4 years ago
• KVM-VMI / nitro
  ☆47Updated 7 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆87Updated 3 years ago
• turbo / KPTI-PoC-Collection
  Meltdown/Spectre PoC src collection.
  ☆510Updated 7 years ago
• tianweiz07 / Cloud_Integrity
  Using LibVMI to detect malware
  ☆31Updated 3 years ago
• packz / binary-encryption
  Original code about binary encryption from phrack
  ☆72Updated 13 years ago
• sduverger / ld-shatner
  ld-linux code injector
  ☆50Updated 14 years ago
• ivanfratric / ropguard
  Runtime Prevention of Return-Oriented Programming Attacks
  ☆82Updated 10 years ago
• jha / linux-kernel-hook
  A small kernel module that can hook arbitrary syscalls on x86_64
  ☆52Updated 6 years ago
• elfmaster / binflow
  This is the new ftrace (https://github.com/elfmaster/ftrace) - Much faster, better resolution but not complete yet! :)
  ☆110Updated 7 years ago
• elfmaster / ecfs
  extended core file snapshot format
  ☆230Updated 6 years ago
• milabs / khook
  Linux Kernel hooking engine (x86)
  ☆376Updated last month
• arisada / midgetpack
  midgetpack is a multiplatform secure ELF packer
  ☆208Updated 11 years ago
• sploitfun / lsploits
  Linux Exploits
  ☆139Updated 10 years ago
• sqall01 / ZwoELF
  An ELF parsing and manipulation library for Python
  ☆74Updated 11 years ago
• whatsbcn / skpd
  Process dump to executable ELF for linux
  ☆106Updated 3 years ago
• ixty / mandibule
  linux elf injector for x86 x86_64 arm arm64
  ☆342Updated 7 years ago
• korczis / libnids
  Libnids is an implementation of an E-component of Network Intrusion Detection System. It emulates the IP stack of Linux 2.0.x. Libnids of…
  ☆53Updated 9 years ago