milabs / kmatryoshka
Matryoshka - stacked LKM loader
☆52Updated last year
Alternatives and similar repositories for kmatryoshka:
Users that are interested in kmatryoshka are comparing it to the libraries listed below
- In line function hooking LKM rootkit☆51Updated 5 years ago
- LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.☆86Updated last year
- ☆33Updated 9 years ago
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆29Updated last year
- Linux Kernel module-less implant (backdoor)☆72Updated 4 years ago
- x86_64 linux rootkit using debug registers☆52Updated 3 years ago
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆116Updated 8 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- ☆99Updated 6 years ago
- ☆48Updated 4 years ago
- Proxy system calls over an RPC channel☆98Updated 3 years ago
- Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.☆48Updated 4 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆94Updated 3 years ago
- ELF launcher for encrypted binaries decrypted on-the-fly and executed in memory☆26Updated 5 years ago
- ☆27Updated 5 years ago
- Code for diskless loading of ELF Shared Library using Reflective DLL Injection☆53Updated 9 years ago
- FLARE Kernel Shellcode Loader☆177Updated 5 years ago
- A repository for my conference presentations☆35Updated 5 years ago
- An exploit for CVE-2019-17026. It pops xcalc and was tested on Ubuntu (x64).☆48Updated 4 years ago
- Exploit code used for the HackSysExtremeVulnerableDriver.☆43Updated 6 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 5 years ago
- Rootkit spotter - experimental Linux rootkit finder LKM☆28Updated 4 years ago
- ☆86Updated 6 months ago
- ☆47Updated 2 years ago
- Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.☆93Updated 6 years ago
- ☆46Updated 5 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- ☆15Updated 6 years ago
- Proof of concept for injecting simple shellcode via ptrace into a running process.☆69Updated 2 years ago
- Tools for instrumenting Windows Defender's mpengine.dll☆37Updated 6 years ago