Alternatives and similar repositories for kjector

Users that are interested in kjector are comparing it to the libraries listed below

• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 4 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆74Updated 4 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆54Updated 2 years ago
• h311d1n3r / HellTracer
  A Linux x86/x86-64 tool to trace registers and memory regions.
  ☆40Updated 3 years ago
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆29Updated 3 months ago
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆30Updated last year
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• gfoudree / UEFIBootkit
  Simple PoC for a bootkit written as a UEFI Option ROM Driver
  ☆12Updated 3 years ago
• Fare9 / elfparser_e
  Example of an ELF parser to learn about the ELF format
  ☆10Updated last year
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆113Updated 2 years ago
• HackingThings / OneBootloaderToLoadThemAll
  One Bootloader to Load Them All - Research materials, Code , Etc.
  ☆61Updated 3 years ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆105Updated last year
• FFRI / ShadeBIOS
  PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
  ☆60Updated 5 months ago
• kiks7 / KRWX
  Kernel Read Write Execute
  ☆83Updated last year
• jjensn / CVE-2024-36877
  Exploit POC for CVE-2024-36877
  ☆48Updated last year
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆30Updated 5 years ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆88Updated 2 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆74Updated 2 years ago
• 0vercl0k / rp-bf.rs
  rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
  ☆121Updated last year
• guitmz / nasty
  Reverse text segment x64 ELF infector written in Assembly
  ☆20Updated 4 years ago
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆34Updated last year
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆27Updated 2 years ago
• rhotav / PT_LOAD-Injector
  An injector that use PT_LOAD technique
  ☆12Updated 3 years ago
• redplait / lkcd
  ugly code to check linux kernel memory and dump some internal structures
  ☆48Updated last year
• odzhan / aes_dust
  Unlicensed tiny / small portable implementation of 128/256-bit AES encryption in C, x86, AMD64, ARM32, ARM64 and LoongArch64 assembly
  ☆131Updated last week
• therealdreg / symseghelper
  Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode
  ☆19Updated 2 years ago
• yardenshafir / conference_talks
  Slides from various conference talks
  ☆37Updated 2 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆31Updated 2 years ago