khale / elf-hijack

Related projects ⓘ

Alternatives and complementary repositories for elf-hijack

• AXDOOMER / run-embedded-elf-from-memory
  Experiment with Linux system calls (memfd_create, fexecve, fork...)
  ☆21Updated 5 years ago
• pagabuc / kallsyms-extractor
  Tool to extract the kallsyms (System.map) from a memory dump
  ☆24Updated last year
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆27Updated 2 years ago
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆74Updated 2 years ago
• BjornRuytenberg / spiblock
  Configure SPI flash write protection.
  ☆23Updated 4 years ago
• ergrelet / cpplumber
  Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects
  ☆80Updated 2 years ago
• wumb0 / IDA-vscode-dark
  VSCode dark theme for IDA 7.3
  ☆27Updated 3 years ago
• hexabeast / Sytrace
  Syscall hooking for reverse-engineering and anti-debug bypass on Linux x86 32/64
  ☆40Updated 4 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆19Updated last year
• Vector35 / arch-x86
  x86/x64 architecture plugin
  ☆39Updated 8 months ago
• wtdcode / mytalks
  PPT of my talks.
  ☆11Updated 3 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆51Updated 4 years ago
• shubham0d / Immutable-file-linux
  A small fun project to protect a file from writing using ftrace hooking.
  ☆23Updated 3 years ago
• intel / vmtaint
  Full-VM taint analysis with Xen, Intel(R) Processor Trace and Triton.
  ☆39Updated last year
• tinyvmi / tinyvmi
  LibVMI in MiniOS
  ☆12Updated 3 years ago
• therealdreg / linux_kernel_debug_disassemble_ida_vmware
  Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)
  ☆36Updated last year
• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆42Updated last year
• jordan9001 / dobby2
  Build your emulation environment as needed
  ☆64Updated 3 years ago
• waleedassar / SyscallNumberFinder
  ☆32Updated 3 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆46Updated 3 weeks ago
• rizinorg / sigdb
  Rizin FLIRT Signature Database
  ☆37Updated last year
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆60Updated 2 years ago
• kirschju / debugmenot
  Collection of simple anti-debugging tricks for Linux
  ☆55Updated 6 years ago
• therealdreg / bochs_linux_kernel_debugging
  Tools for Linux kernel debugging on Bochs (including symbols, native Bochs debugger and IDA PRO)
  ☆31Updated last year
• BehroozAbbassi / VmwpMonitor
  ☆39Updated 3 years ago
• 0vercl0k / symbolizer
  A fast execution trace symbolizer for Windows.
  ☆130Updated 6 months ago
• kholia / mips-hacking
  Notes on QEMU and Debian MIPS (big-endian)
  ☆43Updated 6 years ago
• yrp604 / bdump
  ☆46Updated 2 years ago
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆29Updated 6 months ago
• archercreat / llvm_stuff
  LLVM based devirtualization PoC’s.
  ☆20Updated 2 years ago