Alternatives and similar repositories for d0zer

Users that are interested in d0zer are comparing it to the libraries listed below

• guitmz / ezuri
  A Simple Linux ELF Runtime Crypter
  ☆270Updated 11 months ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 3 years ago
• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆128Updated last year
• Binject / binjection
  Injects additional machine instructions into various binary formats.
  ☆288Updated 2 years ago
• leandrofroes / gftrace
  A command line Windows API tracing tool for Golang binaries.
  ☆159Updated 2 years ago
• anvilsecure / ulexecve
  ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…
  ☆199Updated 2 years ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆171Updated 4 years ago
• malware-unicorn / GoPEInjection
  Golang PE injection on windows
  ☆169Updated 4 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆73Updated 4 years ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆263Updated 2 months ago
• jermeyyy / rooty
  Academic project of Linux rootkit made for Bachelor Engineering Thesis.
  ☆117Updated last year
• mav8557 / Father
  LD_PRELOAD rootkit
  ☆137Updated last year
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆235Updated last year
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆136Updated 8 months ago
• Error996 / bdvl
  bdvl
  ☆115Updated 3 years ago
• sandflysecurity / sandfly-processdecloak
  Sandfly Linux Stealth Rootkit Decloaking Utility
  ☆108Updated 3 years ago
• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆133Updated 4 years ago
• p3tr0v / chacal
  Golang anti-vm framework for Red Team and Pentesters
  ☆128Updated 2 years ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆236Updated 2 years ago
• BishopFox / asminject
  Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…
  ☆143Updated 3 years ago
• redcode-labs / BMJ
  Code snippets for bare-metal malware development
  ☆98Updated 3 years ago
• mandiant / gostringungarbler
  Python tool to resolve all strings in Go binaries obfuscated by garble
  ☆186Updated 11 months ago
• hackerschoice / bpfhacks
  eBPF hacks
  ☆195Updated last year
• pathtofile / commandline_cloaking
  A collection of projects demonstrating various commandline cloaking techniques on Linux
  ☆59Updated 3 years ago
• getCUJO / ThreatIntel
  ☆209Updated 11 months ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆260Updated 4 years ago
• chompie1337 / Linux_LPE_eBPF_CVE-2021-3490
  ☆311Updated 2 years ago
• sha0coder / mwemu
  x86 malware emulator
  ☆284Updated last week
• nccgroup / ghostrings
  Ghidra scripts for recovering string definitions in Go binaries
  ☆127Updated 2 months ago
• ariary / fileless-xec
  Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.…
  ☆204Updated last year