Alternatives and similar repositories for kld-rootkit

Users that are interested in kld-rootkit are comparing it to the libraries listed below

• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆24Updated last year
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• redcode-labs / BMJ
  Code snippets for bare-metal malware development
  ☆98Updated 3 years ago
• 0xMrNiko / RootKit
  This repository contains Loadable Kernel Modules (LKM) and LD_PRELOAD-based modules designed for penetration testing, red teaming, and se…
  ☆12Updated 5 months ago
• compilepeace / EVIL_RABBIT
  -x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.
  ☆28Updated 4 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 3 years ago
• d3adzo / mesa
  Command and Control that uses NTP as the transport protocol.
  ☆21Updated 3 years ago
• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆29Updated 5 years ago
• Real-Cryillic / Sarla
  It's what all the kids are talking about
  ☆12Updated 2 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• cdong1012 / IDAPython-Malware-Scripts
  ☆73Updated last year
• guitmz / nasty
  Reverse text segment x64 ELF infector written in Assembly
  ☆20Updated 3 years ago
• hasherezade / flareon2023
  ☆25Updated 8 months ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago
• RITRedteam / nosferatu
  Windows NTLM Authentication Backdoor
  ☆18Updated 3 years ago
• pygrum / siphon
  A feed of malware samples curated from threat intelligence sources.
  ☆28Updated last year
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆102Updated 2 years ago
• bot984397 / eepy
  ☆31Updated 3 months ago
• antifob / linux-prinj
  Linux process injection PoCs
  ☆31Updated last year
• zimnyaa / LEOPARDSEAL
  A simple Linux in-memory .so loader
  ☆30Updated 2 years ago
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 3 years ago
• accidentalrebel / shcode2exe
  Compile shellcode into an exe file from Windows or Linux.
  ☆68Updated last month
• assume-breach / Malware_Project
  ☆33Updated 2 years ago
• Coalfire-Research / ERC.Xdbg
  An Xdbg Plugin of the ERC Library.
  ☆26Updated last year
• hasherezade / flareon2024
  ☆37Updated 7 months ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆54Updated 3 years ago
• S3cur3Th1sSh1t / nim-strenc
  string encryption in Nim
  ☆20Updated last year
• HuskyHacks / the-crown-defcon615
  Repo for The Crown: Exploratory Analysis of Nim Malware DEF CON 615 talk
  ☆45Updated 3 years ago
• SolomonSklash / COM-Hijacking
  An example of COM hijacking using a proxy DLL.
  ☆28Updated 3 years ago