Alternatives and similar repositories for kjector

Users that are interested in kjector are comparing it to the libraries listed below

• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆23Updated last year
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 3 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆72Updated last year
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated last year
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆31Updated 6 months ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆73Updated 4 years ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆90Updated last year
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆33Updated last year
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆30Updated last year
• kukrimate / grr
  AMD SVM hypervisor rootkit proof of concept
  ☆46Updated last year
• kiks7 / KRWX
  Kernel Read Write Execute
  ☆84Updated 9 months ago
• milankovo / instrlen
  Custom instruction length for hex-rays
  ☆18Updated 5 months ago
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆35Updated last year
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆30Updated 4 years ago
• ch3rn0byl / Charon
  A UEFI extraction tool
  ☆18Updated 7 months ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆51Updated 5 years ago
• ulexec / elf_dynsym_obfuscation
  PoC for obfuscating the dynamic symbol table injecting a custom Hash Table to do symbol resolution
  ☆29Updated 4 years ago
• arcana-technologies / arcana.elfscan
  ELF binary forensics tool for APT, virus, backdoor and rootkit detection
  ☆48Updated 7 months ago
• liba2k / Insomni-Hack-2022
  Breaking Secure Boot with SMM
  ☆41Updated 3 years ago
• Invoke-RE / ungarble_bn
  Binary Ninja plugin to deobfuscate strings obfuscated with the Garble project
  ☆24Updated 3 months ago
• tandasat / CVE-2022-25949
  A years-old exploit of a local EoP vulnerability in Kingsoft Antivirus KWatch Driver version 2009.3.17.77.
  ☆38Updated 3 years ago
• BehroozAbbassi / VmwpMonitor
  ☆40Updated 4 years ago
• TakahiroHaruyama / SpiMitm
  SPI flash read MitM attack PoC
  ☆38Updated 3 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆30Updated last year
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated last year
• Notselwyn / netkit
  Linux rootkit for educational purposes
  ☆31Updated last year
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆29Updated 3 years ago
• bluedragonsecurity / bds_lkm_ftrace
  Ftrace Based Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x and 6.x on x86_64, hides files, hides process, hides bind shell & …
  ☆19Updated last year
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year