khale / elf-hijackLinks
Example of using ELF hacking to inject malicious code into a target binary
☆22Updated 5 years ago
Alternatives and similar repositories for elf-hijack
Users that are interested in elf-hijack are comparing it to the libraries listed below
Sorting:
- Code injector for ELF binaries (incl. PIE)☆27Updated 7 years ago
- PPT of my talks.☆11Updated last month
- A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).☆29Updated 2 years ago
- Collection of simple anti-debugging tricks for Linux☆56Updated 7 years ago
- hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer☆32Updated last year
- A Linux x86/x86-64 tool to trace registers and memory regions.☆38Updated 2 years ago
- Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)☆37Updated last year
- Qiling Framework Documentation☆17Updated 2 months ago
- Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes☆12Updated 4 years ago
- VSCode dark theme for IDA 7.3☆28Updated 4 years ago
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆110Updated 5 years ago
- IDA Database Parser for Rust☆25Updated 8 months ago
- Configure SPI flash write protection.☆23Updated 5 years ago
- short crackme for Windows XP SP3 (32 bit version). ring0 stuff. IMO very fun x-)☆23Updated last year
- Experiment with Linux system calls (memfd_create, fexecve, fork...)☆22Updated 6 years ago
- Tools for Linux kernel debugging on Bochs (including symbols, native Bochs debugger and IDA PRO)☆31Updated last year
- CreateRemoteThread for Linux☆38Updated 5 years ago
- Instrumenting a binary without source code to bypass anti-debug checks☆34Updated 3 years ago
- This repository contains the sources and documentation for the SWAPGS attack PoC (CVE-2019-1125)☆41Updated 5 years ago
- Naive Proof of Concept Crypter for GNU/Linux ELF64☆11Updated 7 years ago
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Updated last year
- IDA plugin to explore and browse tags☆56Updated 5 years ago
- AMD SVM hypervisor rootkit proof of concept☆46Updated last year
- Rootkit spotter - experimental Linux rootkit finder LKM☆30Updated 4 years ago
- An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses☆66Updated 3 years ago
- A collection of Linux kernel rootkits found across the internet taken and put together☆74Updated 2 years ago
- ☆37Updated 2 years ago
- Code injection from Linux kernel to a process☆21Updated 2 years ago
- A C library for creating and using TCP/IP packets with raw network sockets☆67Updated 5 months ago
- IDA SIG files for multiarch uClibc library☆37Updated 6 years ago