Alternatives and similar repositories for kmatryoshka:

Users that are interested in kmatryoshka are comparing it to the libraries listed below

• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆84Updated last year
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆69Updated 3 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆44Updated 6 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆65Updated 3 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆115Updated 8 years ago
• mponcet / subversive
  x86_64 linux rootkit using debug registers
  ☆52Updated 3 years ago
• DownWithUp / CVE-Stockpile
  Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.
  ☆48Updated 4 years ago
• d00rt / ebfuscator
  Ebfuscator: Abusing system errors for binary obfuscation
  ☆52Updated 4 years ago
• nsxz / ReflectiveELFLoader
  Code for diskless loading of ELF Shared Library using Reflective DLL Injection
  ☆55Updated 8 years ago
• v-p-b / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆36Updated 6 years ago
• djhohnstein / ProcessReimaging
  Process reimaging proof of concept code
  ☆95Updated 5 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆27Updated 4 years ago
• MortenSchenk / Token-Stealing-Shellcode
  ☆51Updated 7 years ago
• hacksysteam / WpadEscape
  Sandbox escape using WinHTTP Web Proxy Auto-Discovery Service
  ☆85Updated 5 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆30Updated last year
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆176Updated 5 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆51Updated 4 years ago
• w0lfzhang / mips_exploit
  ☆15Updated 6 years ago
• nnedkov / swiss_army_rootkit
  ☆33Updated 8 years ago
• msuiche / smbaloo
  ☆48Updated 4 years ago
• sevagas / WindowsDefender_ASR_Bypass-OffensiveCon2019
  Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.
  ☆93Updated 5 years ago
• tophertimzen / shellcodeTester
  GUI Application in C# to run and disassemble shellcode
  ☆35Updated 7 years ago
• theevilbit / exploits
  ☆86Updated 4 months ago
• rogue-kdc / CVE-2019-1253
  ☆49Updated 5 years ago
• amitwaisel / Malproxy
  Proxy system calls over an RPC channel
  ☆97Updated 2 years ago
• IOActive / kmdf_re
  Helper idapython code for reversing kmdf drivers
  ☆72Updated 2 years ago
• renorobert / virtualbox-cve-2018-2844
  ☆100Updated 6 years ago
• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆29Updated 4 years ago
• 0xdea / raptor_infiltrate20
  #INFILTRATE20 raptor's party pack.
  ☆28Updated last year