Alternatives and similar repositories for rkchk:

Users that are interested in rkchk are comparing it to the libraries listed below

• akamai / Linux-Process-Injection
  ☆49Updated 5 months ago
• hardenedlinux / userland-exec
  Userland exec PoC to be used as attack vector technique
  ☆85Updated 2 months ago
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆47Updated 6 months ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆82Updated 11 months ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆30Updated 2 weeks ago
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆55Updated 4 months ago
• 0xdea / backdoo-rs
  A simple Meterpreter stager written in Rust.
  ☆36Updated 7 months ago
• nickswang / kubekit
  kubernetes rootkit
  ☆31Updated last year
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆98Updated last year
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆42Updated 10 months ago
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆108Updated last week
• scrt / KexecDDPlus
  Exploiting the KsecDD Windows driver through Server Silos
  ☆65Updated 5 months ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• HackingThings / OneBootloaderToLoadThemAll
  One Bootloader to Load Them All - Research materials, Code , Etc.
  ☆51Updated 2 years ago
• t0-retooling / defender-recon24
  ☆52Updated 6 months ago
• 0xTriboulet / Abomination
  A synergized Visual Studio and Rust development environment
  ☆19Updated 2 months ago
• FFRI / orom-backdoor-research
  PoC code and tools for Black Hat USA 2024
  ☆21Updated 8 months ago
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆62Updated 3 months ago
• wetw0rk / wetw0rk.github.io
  ☆18Updated last month
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 9 months ago
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆29Updated 4 months ago
• Slowerzs / KeyJumper
  ☆41Updated 3 weeks ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆48Updated 2 months ago
• joaoviictorti / dbg-rs
  Safe Rust bindings for the COM interfaces of the Windows debugging engine
  ☆14Updated last month
• joaoviictorti / dinvk
  Dynamically invoke arbitrary code with Rust tricks, #[no_std] support, and compatibility for x64, x86, ARM64 and WoW64 (DInvoke)
  ☆60Updated 3 weeks ago
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆21Updated last year
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆54Updated 8 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆73Updated 3 months ago
• djackreuter / rustlualoader
  Shellcode loader that executes embedded Lua from Rust.
  ☆113Updated 4 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆106Updated 6 months ago