Alternatives and similar repositories for d0zer

Users that are interested in d0zer are comparing it to the libraries listed below

• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆125Updated last year
• guitmz / ezuri
  A Simple Linux ELF Runtime Crypter
  ☆256Updated 3 months ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆254Updated last year
• Binject / binjection
  Injects additional machine instructions into various binary formats.
  ☆282Updated last year
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆73Updated 4 years ago
• anvilsecure / ulexecve
  ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…
  ☆189Updated last year
• leandrofroes / gftrace
  A command line Windows API tracing tool for Golang binaries.
  ☆155Updated last year
• jermeyyy / rooty
  Academic project of Linux rootkit made for Bachelor Engineering Thesis.
  ☆105Updated 10 months ago
• Binject / backdoorfactory
  A from-scratch rewrite of The Backdoor Factory - a MitM tool for inserting shellcode into all types of binaries on the wire.
  ☆378Updated 3 years ago
• malware-unicorn / GoPEInjection
  Golang PE injection on windows
  ☆166Updated 3 years ago
• chompie1337 / Linux_LPE_eBPF_CVE-2021-3490
  ☆302Updated last year
• sha0coder / mwemu
  x86 malware emulator
  ☆222Updated 2 weeks ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆229Updated 6 months ago
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago
• Binject / universal
  Universal Shared Library User-space Loader
  ☆228Updated 3 years ago
• mav8557 / Father
  LD_PRELOAD rootkit
  ☆132Updated last year
• ariary / fileless-xec
  Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.…
  ☆202Updated 11 months ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆222Updated last year
• C-Sto / BananaPhone
  It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)
  ☆511Updated 2 years ago
• Binject / go-donut
  Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
  ☆340Updated 2 years ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆255Updated 3 years ago
• namazso / linux_injector
  A simple ptrace-less shared library injector for x64 Linux
  ☆261Updated 2 years ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆167Updated 3 years ago
• hackerschoice / bpfhacks
  eBPF hacks
  ☆187Updated 6 months ago
• sh4hin / GoPurple
  Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions
  ☆488Updated 4 years ago
• mandiant / gostringungarbler
  Python tool to resolve all strings in Go binaries obfuscated by garble
  ☆107Updated 4 months ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 2 years ago
• liamg / memit
  Run binaries straight from memory in Linux
  ☆317Updated 2 years ago
• romainthomas / reverse-engineering-workshop
  Slides & Hands-on for the reverse engineering workshop
  ☆179Updated 2 years ago
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆75Updated 2 years ago