spiderpig1297 / kprochideLinks
kprochide is an LKM for hiding processes from the userland. The module is able to hide multiple processes and is able to dynamically receive new processes to hide.
☆21Updated 4 years ago
Alternatives and similar repositories for kprochide
Users that are interested in kprochide are comparing it to the libraries listed below
Sorting:
- Linux kernel rootkit to hide certain files and processes.☆36Updated 11 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 5 years ago
- ELF packer/crypter that aims to create hardened and stealthy troyans☆54Updated 3 years ago
- Rootkit Detector for UNIX☆61Updated last year
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses☆66Updated 3 years ago
- Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)☆38Updated 10 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆26Updated 6 years ago
- A minimal tool to extract shellcode from 64-bit PE binaries.☆50Updated 3 years ago
- x86_64 linux rootkit using debug registers☆52Updated 3 years ago
- Another (bad) ROP gadget finder, but this time in Rust☆20Updated last year
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- Protects deletion of files with a specified extension using a kernel-mode driver.☆75Updated 6 years ago
- Windows Application Loader Running *.Exe files in Memory against Scrylla☆21Updated 5 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- Linux kernel module that provides remote backdoor using netfilters , file and pid hiding.☆11Updated 8 years ago
- ☆45Updated 6 years ago
- PoC for CVE-2021-32537: an out-of-bounds memory access that leads to pool corruption in the Windows kernel.☆57Updated 3 years ago
- This repository contains the sources and documentation for the SWAPGS attack PoC (CVE-2019-1125)☆41Updated 5 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆27Updated 6 years ago
- Tool to create and test shellcodes from custom assembly sources (with some encoding options)☆35Updated 6 years ago
- An Integrity-Check Monitoring Pintool☆57Updated 4 years ago
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆116Updated 8 years ago
- Simple LKM linux kernel rootkit (x86 / x86_64)☆23Updated 4 years ago
- Flare-On solutions☆36Updated 5 years ago
- Rust binding for Keystone assembler framework☆11Updated 6 years ago
- The exploit for Panda AV LPE☆37Updated 6 years ago
- Binary (In)security tool☆25Updated last year
- Skeleton project for your own GRUB-based bootkit☆16Updated 5 years ago
- Rekall Memory Forensic Framework☆32Updated 5 years ago