sysprog21 / lkm-hiddenLinks
A Linux kernel module which hides itself
☆53Updated 4 years ago
Alternatives and similar repositories for lkm-hidden
Users that are interested in lkm-hidden are comparing it to the libraries listed below
Sorting:
- Kernel mode to user mode so injection☆91Updated 5 years ago
- ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.☆144Updated last week
- system call hooking on arm64 linux via a variety of methods☆49Updated 3 years ago
- Another LLVM-obfuscator based on LLVM-17. A fork of Arkari☆110Updated last year
- Implementation of sllvm obfuscator☆66Updated 3 years ago
- LLVM based obfuscation engine☆109Updated 7 months ago
- Injecting into SELinux-protected system service processes under root on Android.☆50Updated last year
- Intel Hardware Trace Library - Kernel Space Componment☆80Updated 3 months ago
- silent syscall hooking without modifying sys_call_table/handlers via patching exception handler☆152Updated last year
- The tool can be used to eliminate redundant instructions in a basic block.☆81Updated 2 years ago
- In-memory ELF shared library loading☆45Updated 3 years ago
- Toy LLVM obfuscator pass☆76Updated 4 years ago
- Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.☆45Updated 3 years ago
- Deobfuscate OLLVM Bogus Control Flow via angr☆68Updated 4 years ago
- Kernel Read Write Execute☆84Updated last year
- Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.☆90Updated 9 months ago
- Legacy IDAPython project for Hex-Ray's IDA Pro, now maintained as part of the IDA SDK.☆34Updated 5 months ago
- A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).☆36Updated 3 months ago
- Assisting Go Analysis and Reversing☆96Updated 2 months ago
- obfacros - a set of C++ macros that can be used to obfuscate your c/c++ code, to make executables harder for reverse-engineering.☆46Updated 6 years ago
- load so file into current memory space and run function☆112Updated 8 years ago
- an obfuscator based on LLVM which can obfuscate the program execution trajectory☆106Updated 4 years ago
- Kotoamatsukami is an obfuscator based on LLVM-17, utilizing LLVM's new pass to implement plug-in features, for obfuscating multiple langu…☆61Updated 10 months ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆78Updated 2 years ago
- LLVM based "VM" obfuscator☆152Updated 4 years ago
- ☆73Updated 6 months ago
- AndroidDriveSignity is a Python utility designed to bypass driver signature verification in Android kernel(ARMv8.3), facilitating the loa…☆65Updated last year
- ida pro collapse plugin☆30Updated 2 years ago
- VMPilot: A Modern C++ Virtual Machine SDK☆272Updated 10 months ago
- 关于intel和amd指令行为不一样这件事☆62Updated 3 years ago