Alternatives and similar repositories for lkm-hidden:

Users that are interested in lkm-hidden are comparing it to the libraries listed below

• lockedbyte / so_loader
  In-memory ELF shared library loading
  ☆37Updated 2 years ago
• 3intermute / linux_syscall_hook
  system call hooking on arm64 linux via a variety of methods
  ☆47Updated 2 years ago
• MoePus / wowHijack
  Run some secret code invisible from debugger single step.(x86 process on x64 windows only)
  ☆24Updated 4 years ago
• ulexec / elf_dynsym_obfuscation
  PoC for obfuscating the dynamic symbol table injecting a custom Hash Table to do symbol resolution
  ☆27Updated 4 years ago
• liyansong2018 / elfspirit
  ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.
  ☆57Updated last week
• pathtofile / bpf-hookdetect
  Dectect syscall hooking using eBPF
  ☆143Updated last year
• IamSanjid / linux-process_mem
  Simple library to Read and Write Memory of a Linux Process through custom Kernel Module
  ☆48Updated 4 years ago
• cs1ime / AndroidSuperInject
  Injecting into SELinux-protected system service processes under root on Android.
  ☆38Updated 11 months ago
• zandi / eBPF_processor
  An IDA processor for eBPF bytecode
  ☆62Updated 2 months ago
• KpwnZ / sllvm-obfuscator
  Implementation of sllvm obfuscator
  ☆66Updated 2 years ago
• cylance / eBPF_processor
  An IDA processor for eBPF bytecode
  ☆47Updated 3 years ago
• huoji120 / cpu_duck
  关于intel和amd指令行为不一样这件事
  ☆60Updated 2 years ago
• killvxk / awesome-bootkit
  Bootkits
  ☆19Updated last year
• bl4ckswan / anti-disassembly
  ☆19Updated 7 years ago
• Gui774ume / etrace
  ETrace is a syscall tracing utility powered by eBPF
  ☆24Updated last year
• therealdreg / bochs_linux_kernel_debugging
  Tools for Linux kernel debugging on Bochs (including symbols, native Bochs debugger and IDA PRO)
  ☆31Updated last year
• Fare9 / elfparser_e
  Example of an ELF parser to learn about the ELF format
  ☆10Updated 3 months ago
• reductor / dice-ctf-2022-breach-writeup
  Dice CTF 2022 breach write-up
  ☆15Updated 2 years ago
• ek0 / hxemu
  Triton based symbolic emulator
  ☆16Updated 2 years ago
• veritas501 / ToyObfuscator
  Toy LLVM obfuscator pass
  ☆71Updated 3 years ago
• yaxinsn / vermagic
  Change vermagic and CRCs of a Linux Kernel Module
  ☆51Updated 6 years ago
• therealdreg / linux_kernel_debug_disassemble_ida_vmware
  Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)
  ☆36Updated last year
• RouNNdeL / anti-rootkit-lkm
  A simple anti-rootkit Linux kernel module for an 'Operating Systems Security' course.
  ☆15Updated 3 years ago
• gognl / VMBR
  A VMBR (Virtual-Machine Based Rootkit) which runs a guest OS and sends the attacker its data
  ☆27Updated 9 months ago
• libiht / libiht
  Intel Hardware Trace Library
  ☆66Updated 4 months ago
• IridiumXOR / uclibc-sig
  IDA SIG files for multiarch uClibc library
  ☆38Updated 6 years ago
• hackcatml / frida-watchpoint-tutorial
  Frida's setHardwareWatchpoint tutorial
  ☆25Updated 3 months ago
• virtist / elfloader
  load so file into current memory space and run function
  ☆102Updated 7 years ago
• cbwang505 / unicorn-whpx
  跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…
  ☆65Updated last year
• g0mxxm / Anti-Obfuscation
  The tool can be used to eliminate redundant instructions in a basic block.
  ☆79Updated last year