Alternatives and similar repositories for Opossum-Attack-PoC

Users that are interested in Opossum-Attack-PoC are comparing it to the libraries listed below

• eurecom-s3 / lemon
  eBPF Memory Dump Tool
  ☆92Updated 3 months ago
• hardenedlinux / userland-exec
  Userland exec PoC to be used as attack vector technique
  ☆94Updated last month
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆54Updated 8 months ago
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆75Updated 11 months ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆43Updated last year
• xaitax / NTSleuth
  Comprehensive Windows Syscall Extraction & Analysis Framework
  ☆153Updated 3 months ago
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆53Updated last year
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆73Updated last week
• 20urc3 / Publications
  This repository contains the public work I produced, wheter it is research, post, slides, sometimes videos, and materials of my talks.
  ☆52Updated 4 months ago
• hasherezade / flareon2024
  ☆39Updated 11 months ago
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆55Updated 9 months ago
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆75Updated 3 months ago
• cod3nym / Ghosting-AMSI
  Ghosting-AMSI
  ☆18Updated 7 months ago
• binarly-io / ToolsAndPoCs
  BINARLY Research Tools and PoCs
  ☆39Updated last year
• monsieurPale / RSA-Backdoor
  ☆163Updated last week
• f0rw4rd / tls-preloader
  LD_PRELOAD library to bypass TLS certificate verification for debugging and testing
  ☆91Updated 2 months ago
• thalium / vminer
  ☆90Updated 9 months ago
• JanielDary / ELFieScanner
  A C++ tool for process memory scanning & suspicious telemetry generation that attempts to detect a number of malicious techniques used by…
  ☆84Updated last year
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆132Updated 7 months ago
• alfarom256 / LogMeInPoCHandleDup
  ☆64Updated last year
• mephistolist / tito
  In-Memory Rootkit For Linux and BSD
  ☆86Updated 3 months ago
• gum3t / chameleon
  Chameleon is a polymorphic engine for x86_64 position independent shellcode that has been created out of the need to evade signature-base…
  ☆44Updated 2 months ago
• wetw0rk / wetw0rk.github.io
  ☆20Updated last month
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆25Updated 2 weeks ago
• Workday / raw-disk-parser
  A tool to interact with Windows drivers to perform a raw disk read and parse out target files without calling standard Windows file APIs
  ☆98Updated 3 months ago
• imperva / frida-jit-unpacker
  The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.
  ☆64Updated last year
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆39Updated 9 months ago
• rad9800 / RansomFS
  ☆31Updated 9 months ago
• roddux / germy
  GERMY is a Linux Kernel n-day in the N_GSM line discipline
  ☆49Updated last year
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆136Updated 6 months ago