Alternatives and similar repositories for Immutable-file-linux:

Users that are interested in Immutable-file-linux are comparing it to the libraries listed below

• therealdreg / linux_kernel_debug_disassemble_ida_vmware
  Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)
  ☆36Updated last year
• mfaerevaag / elfinjector
  Code injector for ELF binaries (incl. PIE)
  ☆26Updated 7 years ago
• Nadharm / CoVirt
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆28Updated 2 years ago
• killvxk / awesome-bootkit
  Bootkits
  ☆19Updated last year
• IridiumXOR / uclibc-sig
  IDA SIG files for multiarch uClibc library
  ☆38Updated 6 years ago
• redplait / lkcd
  ugly code to check linux kernel memory and dump some internal structures
  ☆44Updated 2 months ago
• XShar / rootkit_for_linux_kernel_5
  Пример руткита для ядра линукс 5
  ☆19Updated 4 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆19Updated last year
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆37Updated 4 years ago
• waleedassar / SyscallNumberFinder
  ☆33Updated 3 years ago
• socjordi / sauron
  Windows Monitoring Agent (process creation + DLL loading monitor + network monitor + file system access monitor + etc)
  ☆61Updated 6 years ago
• cppcoffee / inl_hook
  a linux kernel function inline hooking library
  ☆30Updated 7 years ago
• intel / vmtaint
  Full-VM taint analysis with Xen, Intel(R) Processor Trace and Triton.
  ☆39Updated last year
• resilar / psyscall
  Linux syscall() injection
  ☆36Updated 4 years ago
• pathtofile / bpf-hookdetect
  Dectect syscall hooking using eBPF
  ☆143Updated last year
• sebcat / openssl-hook
  Log data to/from SSL_write/SSL_read to disk using LD_PRELOAD hooks
  ☆88Updated 5 years ago
• bitdefender / swapgs-attack-poc
  This repository contains the sources and documentation for the SWAPGS attack PoC (CVE-2019-1125)
  ☆41Updated 5 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆27Updated 4 years ago
• qilingframework / rtfd.io
  Qiling Framework Documentation
  ☆15Updated 9 months ago
• AXDOOMER / run-embedded-elf-from-memory
  Experiment with Linux system calls (memfd_create, fexecve, fork...)
  ☆21Updated 5 years ago
• liyansong2018 / elfspirit
  ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.
  ☆57Updated last week
• 0xN3utr0n / Yaef
  Yet Another ELF-Injector
  ☆16Updated 5 years ago
• OSRDrivers / WDF-I
  Writing WDF Drivers I: Core Concepts Lab Material
  ☆49Updated last year
• sam4k / lica
  A hacky tool for analysing linux kernel commits
  ☆37Updated last year
• zandi / eBPF_processor
  An IDA processor for eBPF bytecode
  ☆62Updated 2 months ago
• BehroozAbbassi / VmwpMonitor
  ☆39Updated 3 years ago
• perceptionpoint / suprotect
  Changing memory protection in an arbitrary process
  ☆47Updated 6 years ago
• h3xduck / RawTCP_Lib
  A C library for creating and using TCP/IP packets with raw network sockets
  ☆63Updated last month
• jiazhang0 / SELoader
  Secure EFI Loader designed to authenticate the non-PE files
  ☆48Updated 2 years ago
• linuxthor / rkbreaker
  Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes
  ☆12Updated 4 years ago