redplait / lkcd
ugly code to check linux kernel memory and dump some internal structures
☆46Updated 4 months ago
Alternatives and similar repositories for lkcd:
Users that are interested in lkcd are comparing it to the libraries listed below
- LKRG bypass methods☆71Updated 5 years ago
- ELF binary forensics tool for APT, virus, backdoor and rootkit detection☆47Updated 4 months ago
- SentinelOne's KeRnel Exploits Advanced Mitigations☆53Updated 6 years ago
- https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development☆42Updated 3 years ago
- Code injection from Linux kernel to a process☆19Updated last year
- Tools for Linux kernel debugging on Bochs (including symbols, native Bochs debugger and IDA PRO)☆31Updated last year
- A fast execution trace symbolizer for Windows.☆130Updated 10 months ago
- Rootkit spotter - experimental Linux rootkit finder LKM☆27Updated 4 years ago
- Configure SPI flash write protection.☆23Updated 4 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 5 years ago
- Linux rootkit for educational purposes☆30Updated last year
- Slides, recordings and materials of my public presentations, talks and workshops.☆77Updated this week
- An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses☆62Updated 3 years ago
- iTLB multihit PoC☆40Updated last year
- Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)☆36Updated last year
- A utility to fix intentionally corrupted UPX packed files.☆84Updated last year
- Tool to extract the kallsyms (System.map) from a memory dump☆25Updated last year
- A Linux x86/x86-64 tool to trace registers and memory regions.☆37Updated 2 years ago
- ☆48Updated 4 years ago
- ☆40Updated 3 years ago
- CVE-2020-0890 | Windows Hyper-V Denial of Service Vulnerability proof-of-concept code☆36Updated 4 years ago
- Python bindings for the Microsoft Hypervisor Platform APIs.☆80Updated 5 years ago
- Python bindings for BochsCPU☆35Updated last month
- Ghidra data type archive for Windows driver analysis☆21Updated 5 months ago
- CTF challenges that I created☆18Updated 3 years ago
- ☆120Updated last month
- Fix Go obfuscated binaries that were obfuscated using gobfuscator☆47Updated 3 years ago
- Binary exploitation by confusing the unwinder☆59Updated 2 years ago
- ☆18Updated last year
- Thunderclap QEMU-based network card emulation☆27Updated 2 years ago