Alternatives and similar repositories for khook

Users that are interested in khook are comparing it to the libraries listed below

• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆287Updated 4 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆178Updated 8 years ago
• strozfriedberg / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆254Updated 8 years ago
• ixty / mandibule
  linux elf injector for x86 x86_64 arm arm64
  ☆338Updated 7 years ago
• elfmaster / libelfmaster
  Secure ELF parsing/loading library for forensics reconstruction of malware, and robust reverse engineering tools
  ☆449Updated 6 months ago
• xcellerator / linux_kernel_hacking
  Linux Kernel Hacking
  ☆745Updated last year
• jha / linux-kernel-hook
  A small kernel module that can hook arbitrary syscalls on x86_64
  ☆52Updated 6 years ago
• bcoles / kasld
  Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address a…
  ☆460Updated last year
• KVM-VMI / kvm-vmi
  KVM-based Virtual Machine Introspection
  ☆351Updated last month
• elfmaster / ftrace
  POSIX Function tracing
  ☆338Updated 8 years ago
• zznop / drow
  Injects code into ELF executables post-build
  ☆234Updated last year
• elfmaster / skeksi_virus
  Devestating and awesome Linux X86_64 ELF Virus
  ☆233Updated 3 years ago
• kfiros / execmon
  Advanced process execution monitoring utility for linux (procmon like)
  ☆85Updated 9 years ago
• emptymonkey / ptrace_do
  A ptrace library for easy syscall injection in Linux.
  ☆181Updated last year
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆86Updated 3 years ago
• malisal / loaders
  Tiny loaders for various binary formats.
  ☆243Updated 9 years ago
• rohaaan / hypervisor-for-beginners
  Intel Vt-x/EPT based thin-hypervisor for windows with minimum possible code.
  ☆178Updated 8 years ago
• gaffe23 / linux-inject
  Tool for injecting a shared object into a Linux process
  ☆1,211Updated 3 years ago
• misc0110 / PTEditor
  A small library to modify all page-table levels of all processes from user space for x86_64 and ARMv8.
  ☆270Updated 6 months ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆139Updated 7 years ago
• a13xp0p0v / kernel-hack-drill
  Linux kernel exploitation experiments
  ☆366Updated last week
• GunshipPenguin / kiteshield
  Packer/Protector for x86-64 ELF binaries on Linux
  ☆172Updated 4 years ago
• MikhailProg / elf
  small elf loader
  ☆167Updated last year
• abysamross / simple-linux-kernel-tcp-client-server
  A simple in-kernel tcp client and server implemented as LKMs
  ☆56Updated last year
• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆817Updated 2 years ago
• yaoyumeng / adore-ng
  linux rootkit adapted for 2.6 and 3.x
  ☆214Updated 9 years ago
• meme / hellscape
  GIMPLE obfuscator for C, C++, Go, ... all supported GCC targets and front-ends that use GIMPLE.
  ☆402Updated 4 years ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆132Updated last year
• Arinerron / heaptrace
  helps visualize heap operations for pwn and debugging
  ☆325Updated 2 years ago
• nluedtke / linux_kernel_cves
  Tracking CVEs for the linux Kernel
  ☆751Updated last year