Alternatives and similar repositories for Immutable-file-linux

Users that are interested in Immutable-file-linux are comparing it to the libraries listed below

• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆29Updated 2 years ago
• cppcoffee / inl_hook
  a linux kernel function inline hooking library
  ☆30Updated 7 years ago
• therealdreg / linux_kernel_debug_disassemble_ida_vmware
  Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)
  ☆36Updated last year
• qilingframework / rtfd.io
  Qiling Framework Documentation
  ☆17Updated 2 months ago
• AXDOOMER / run-embedded-elf-from-memory
  Experiment with Linux system calls (memfd_create, fexecve, fork...)
  ☆22Updated 6 years ago
• IridiumXOR / uclibc-sig
  IDA SIG files for multiarch uClibc library
  ☆37Updated 6 years ago
• daveti / syscallh
  syscall hijacking in 2019
  ☆11Updated 6 years ago
• killvxk / awesome-bootkit
  Bootkits
  ☆19Updated last year
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆87Updated last year
• mfaerevaag / elfinjector
  Code injector for ELF binaries (incl. PIE)
  ☆27Updated 7 years ago
• perceptionpoint / suprotect
  Changing memory protection in an arbitrary process
  ☆47Updated 6 years ago
• h3xduck / RawTCP_Lib
  A C library for creating and using TCP/IP packets with raw network sockets
  ☆66Updated 4 months ago
• pathtofile / bpf-hookdetect
  Dectect syscall hooking using eBPF
  ☆153Updated 2 years ago
• lumontec / lsmtrace
  Trace deep kernel events through eBPF and lsm hooks
  ☆35Updated 4 years ago
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆42Updated 4 years ago
• dbhi / binhook
  A survey of techniques to hook and/or replace functions in executable binaries or shared libraries
  ☆27Updated 4 years ago
• tianweiz07 / Cloud_Integrity
  Using LibVMI to detect malware
  ☆31Updated 3 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆29Updated 4 years ago
• jha / linux-kernel-hook
  A small kernel module that can hook arbitrary syscalls on x86_64
  ☆52Updated 5 years ago
• waleedassar / SyscallNumberFinder
  ☆33Updated 3 years ago
• pathtofile / bpf-pipesnoop
  Example program using eBPF to log data being based in using shell pipes
  ☆41Updated 4 years ago
• redplait / lkcd
  ugly code to check linux kernel memory and dump some internal structures
  ☆46Updated 5 months ago
• zandi / eBPF_processor
  An IDA processor for eBPF bytecode
  ☆64Updated 6 months ago
• ohjeongwook / iptanalyzer
  Intel PT log analyzer With Parallel Processing And Basic Block Offset Caching Support
  ☆70Updated last year
• kirschju / debugmenot
  Collection of simple anti-debugging tricks for Linux
  ☆55Updated 7 years ago
• plivepatch / plivepatch
  hotfix hotpatch
  ☆22Updated 6 years ago
• CalvinXu17 / Linux4.19-IDT-Hook-sys_call_table
  Debian10-Linux4.19 Hook sys_call_table By IDT
  ☆10Updated 5 years ago
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆271Updated 4 years ago
• 0xN3utr0n / Yaef
  Yet Another ELF-Injector
  ☆16Updated 5 years ago
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆23Updated 4 years ago