sysprog21 / lkm-hiddenLinks
A Linux kernel module which hides itself
☆47Updated 3 years ago
Alternatives and similar repositories for lkm-hidden
Users that are interested in lkm-hidden are comparing it to the libraries listed below
Sorting:
- Injecting into SELinux-protected system service processes under root on Android.☆41Updated last year
- In-memory ELF shared library loading☆41Updated 2 years ago
- ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.☆66Updated this week
- Kernel Read Write Execute☆84Updated 9 months ago
- system call hooking on arm64 linux via a variety of methods☆50Updated 3 years ago
- A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).☆29Updated 3 years ago
- Change vermagic and CRCs of a Linux Kernel Module☆52Updated 6 years ago
- 关于intel和amd指令行为不一样这件事☆61Updated 3 years ago
- 内核硬件调试器模块,rootkit操作 dump☆35Updated 3 years ago
- linux kernel inline hook☆127Updated 2 years ago
- The tool can be used to eliminate redundant instructions in a basic block.☆81Updated last year
- A GKI Android kernel driver(ARMv8.3) template compiled by llvm-msvc☆38Updated last year
- Kernel mode to user mode so injection☆91Updated 4 years ago
- Intel Hardware Trace Library - Kernel Space Componment☆69Updated 2 months ago
- Another LLVM-obfuscator based on LLVM-17. A fork of Arkari☆74Updated last year
- An IDA processor for eBPF bytecode☆66Updated 7 months ago
- Shared object ELF Process injection and loading resources.☆8Updated 9 months ago
- Bootkits☆18Updated last year
- silent syscall hooking without modifying sys_call_table/handlers via patching exception handler☆131Updated last year
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆68Updated last year
- ☆82Updated 2 years ago
- Deobfuscate OLLVM Bogus Control Flow via angr☆63Updated 3 years ago
- An IDA processor for eBPF bytecode☆48Updated 3 years ago
- LLVM based obfuscation engine☆30Updated last week
- System Call Hook for ARM64☆157Updated last week
- Control Flow Flattening Deobfuscator for Obfuscator-LLVM as a plugin for IDA Pro.☆37Updated 2 months ago
- obfacros - a set of C++ macros that can be used to obfuscate your c/c++ code, to make executables harder for reverse-engineering.☆46Updated 6 years ago
- A recursive disassembler written in Python. Most suitable for VMs in CTFs.☆21Updated 5 years ago
- vmp2.x devirtualization☆74Updated 7 months ago
- Recover 64 bit ELF executables from memory dump☆90Updated 6 years ago