timb-machine/linux-malware external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

timb-machine/linux-malware

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/timb-machine/linux-malware)

Close

timb-machine / linux-malwareView on GitHubMore

• External links
• Readme badge

Tracking interesting Linux (and UNIX) malware. Send PRs

☆1,210May 10, 2025Updated 9 months ago

Alternatives and similar repositories for linux-malware

Users that are interested in linux-malware are comparing it to the libraries listed below

• h3xduck / TripleCross

  View on GitHub
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,942Apr 7, 2024Updated last year
• vxunderground / MalwareSourceCode

  View on GitHub
  Collection of malware source code for a variety of platforms in an array of different programming languages.
  ☆17,858Sep 10, 2025Updated 5 months ago
• milabs / awesome-linux-rootkits

  View on GitHub
  awesome-linux-rootkits
  ☆2,032Feb 15, 2026Updated 2 weeks ago
• mentebinaria / retoolkit

  View on GitHub
  Reverse Engineer's Toolkit
  ☆5,169May 1, 2025Updated 10 months ago
• cado-security / DFIR_Resources_REvil_Kaseya

  View on GitHub
  Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack
  ☆180Jul 6, 2021Updated 4 years ago
• nccgroup / exploit_mitigations

  View on GitHub
  Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
  ☆923May 20, 2024Updated last year
• hasherezade / malware_training_vol1

  View on GitHub
  Materials for Windows Malware Analysis training (volume 1)
  ☆2,028Jul 1, 2024Updated last year
• alexandreborges / malwoverview

  View on GitHub
  Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…
  ☆3,547Jan 20, 2026Updated last month
• liamg / traitor

  View on GitHub
  Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
  ☆7,111Mar 12, 2024Updated last year
• ashemery / exploitation-course

  View on GitHub
  Offensive Software Exploitation Course
  ☆2,393May 31, 2023Updated 2 years ago
• mytechnotalent / Reverse-Engineering

  View on GitHub
  A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit/64-bit ARM, 8-bit AVR and 32-bit RISC-V architectures.
  ☆13,287Updated this week
• nnsee / fileless-elf-exec

  View on GitHub
  Execute ELF files without dropping them on disk
  ☆503Jun 28, 2024Updated last year
• elastic / protections-artifacts

  View on GitHub
  Elastic Security detection content for Endpoint
  ☆1,380Updated this week
• jstrosch / malware-samples

  View on GitHub
  Malware samples, analysis exercises and other interesting resources.
  ☆1,613Jan 13, 2024Updated 2 years ago
• mandiant / speakeasy

  View on GitHub
  Windows kernel and user mode emulation.
  ☆1,860Updated this week
• BC-SECURITY / Beginners-Guide-to-Obfuscation

  View on GitHub
  ☆1,072May 18, 2024Updated last year
• trickster0 / OffensiveRust

  View on GitHub
  Rust Weaponization for Red Team Engagements.
  ☆2,986Apr 25, 2024Updated last year
• mufeedvh / moonwalk

  View on GitHub
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,476Oct 8, 2022Updated 3 years ago
• WithSecureLabs / chainsaw

  View on GitHub
  Rapidly Search and Hunt through Windows Forensic Artefacts
  ☆3,452Feb 14, 2026Updated 2 weeks ago
• hardenedvault / bootkit-samples

  View on GitHub
  Bootkit sample for firmware attack
  ☆266Dec 1, 2024Updated last year
• a13xp0p0v / linux-kernel-defence-map

  View on GitHub
  Linux Kernel Defence Map shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and de…
  ☆2,258Dec 27, 2025Updated 2 months ago
• krisnova / boopkit

  View on GitHub
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,662Oct 19, 2023Updated 2 years ago
• guitmz / ezuri

  View on GitHub
  A Simple Linux ELF Runtime Crypter
  ☆271Feb 25, 2025Updated last year
• jonaslejon / malicious-pdf

  View on GitHub
  💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
  ☆3,610Nov 14, 2025Updated 3 months ago
• MichaelKoczwara / Awesome-CobaltStrike-Defence

  View on GitHub
  Defences against Cobalt Strike
  ☆1,296Jul 14, 2022Updated 3 years ago
• mandiant / flare-floss

  View on GitHub
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,897Feb 23, 2026Updated last week
• packing-box / awesome-executable-packing

  View on GitHub
  A curated list of awesome resources related to executable packing
  ☆1,542Feb 14, 2026Updated 2 weeks ago
• roadwy / RIP

  View on GitHub
  ☆1,455Jan 23, 2024Updated 2 years ago
• mandiant / capa

  View on GitHub
  The FLARE team's open-source tool to identify capabilities in executable files.
  ☆5,844Updated this week
• hasherezade / hollows_hunter

  View on GitHub
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,313Oct 31, 2025Updated 4 months ago
• rootkit-io / awesome-malware-development

  View on GitHub
  Organized list of my malware development resources
  ☆1,701May 16, 2022Updated 3 years ago
• its-a-feature / Mythic

  View on GitHub
  A collaborative, multi-platform, red teaming framework
  ☆4,318Feb 19, 2026Updated last week
• mattnotmax / cyberchef-recipes

  View on GitHub
  A list of cyber-chef recipes and curated links
  ☆2,186Jun 14, 2024Updated last year
• jatrost / awesome-detection-rules

  View on GitHub
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆296May 5, 2024Updated last year
• optiv / ScareCrow

  View on GitHub
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,874Aug 18, 2023Updated 2 years ago
• bee-san / pyWhat

  View on GitHub
  🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell …
  ☆7,153Oct 31, 2023Updated 2 years ago
• byt3bl33d3r / OffensiveNim

  View on GitHub
  My experiments in weaponizing Nim (https://nim-lang.org/)
  ☆3,038May 13, 2024Updated last year
• fr0gger / Awesome_Malware_Techniques

  View on GitHub
  This is a repository of resource about Malware techniques
  ☆824Apr 8, 2023Updated 2 years ago
• cobbr / Covenant

  View on GitHub
  Covenant is a collaborative .NET C2 framework for red teamers.
  ☆4,620Jul 18, 2024Updated last year