Alternatives and similar repositories for rkchk

Users that are interested in rkchk are comparing it to the libraries listed below

• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆48Updated 8 months ago
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆67Updated 6 months ago
• akamai / Linux-Process-Injection
  ☆59Updated 7 months ago
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆115Updated 3 weeks ago
• hardenedlinux / userland-exec
  Userland exec PoC to be used as attack vector technique
  ☆85Updated 4 months ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆36Updated 2 months ago
• joaoviictorti / dinvk
  Dynamically invoke arbitrary code and use various tricks written idiomatically in Rust (Dinvoke)
  ☆78Updated this week
• nickswang / kubekit
  kubernetes rootkit
  ☆31Updated last year
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆84Updated last year
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆42Updated last year
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆100Updated last year
• 0xdea / backdoo-rs
  A simple Meterpreter stager written in Rust.
  ☆38Updated 9 months ago
• Dor00tkit / CVE-2024-30090
  CVE-2024-30090 - LPE PoC
  ☆107Updated 8 months ago
• safedv / Rustic64Shell
  A 64-bit, position-independent code reverse TCP shell for Windows — built in Rust.
  ☆71Updated last month
• iDigitalFlame / XrMT
  e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!
  ☆24Updated 10 months ago
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆64Updated last month
• zerozenxlabs / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆127Updated last year
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆62Updated 5 months ago
• Teach2Breach / snapinject_rs
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆49Updated 4 months ago
• 0x4d5a-ctf / 38c3_com_talk
  Slides for COM Hijacking AV/EDR Talk on 38c3
  ☆74Updated 5 months ago
• 0xTriboulet / Abomination
  A synergized Visual Studio and Rust development environment
  ☆18Updated 4 months ago
• djackreuter / rustlualoader
  Shellcode loader that executes embedded Lua from Rust.
  ☆114Updated 6 months ago
• Crowdfense / CVE-2024-21338
  Windows AppLocker Driver (appid.sys) LPE
  ☆62Updated 10 months ago
• 0xTriboulet / rdll-rs
  A reflective DLL development template for the Rust programming language
  ☆94Updated last month
• Kudaes / CustomEntryPoint
  Select any exported function in a dll as the new dll's entry point.
  ☆80Updated 7 months ago
• t0-retooling / defender-recon24
  ☆52Updated 8 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆53Updated 4 months ago
• interruptlabs / conferences
  ☆34Updated last year
• Slowerzs / CryptDecryptMemory
  ☆30Updated 6 months ago
• synacktiv / keebcap
  Win32 keylogger that supports all (non-ime using) languages correctly
  ☆50Updated last year