Alternatives and similar repositories for linux-malware

Users that are interested in linux-malware are comparing it to the libraries listed below

• cert-ee / cuckoo3
  Cuckoo3 is a Python 3 open source automated malware analysis system.
  ☆726Updated 2 weeks ago
• vxunderground / VXUG-Papers
  Research code & papers from members of vx-underground.
  ☆1,244Updated 3 years ago
• CERT-Polska / drakvuf-sandbox
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,139Updated last week
• MichaelKoczwara / Awesome-CobaltStrike-Defence
  Defences against Cobalt Strike
  ☆1,285Updated 2 years ago
• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,138Updated 8 months ago
• jstrosch / malware-samples
  Malware samples, analysis exercises and other interesting resources.
  ☆1,557Updated last year
• mandiant / speakeasy
  Windows kernel and user mode emulation.
  ☆1,663Updated 2 months ago
• elastic / protections-artifacts
  Elastic Security detection content for Endpoint
  ☆1,204Updated last week
• redcode-labs / Coldfire
  Golang malware development library
  ☆956Updated 5 months ago
• hasherezade / malware_training_vol1
  Materials for Windows Malware Analysis training (volume 1)
  ☆1,989Updated 11 months ago
• nccgroup / exploit_mitigations
  Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
  ☆903Updated last year
• MalwareSamples / Malware-Feed
  Bringing you the best of the worst files on the Internet.
  ☆329Updated 4 years ago
• mattnotmax / cyberchef-recipes
  A list of cyber-chef recipes and curated links
  ☆2,097Updated 11 months ago
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,441Updated 2 years ago
• fr0gger / Awesome_Malware_Techniques
  This is a repository of resource about Malware techniques
  ☆798Updated 2 years ago
• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,860Updated last year
• saferwall / saferwall
  Collaborative Malware Analysis Platform at Scale
  ☆742Updated last month
• alexandreborges / malwoverview
  Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…
  ☆3,207Updated 4 months ago
• lawndoc / jaws
  Jaws is an invisible programming language! Inject invisible code into other languages and files! Created for security research -- see blo…
  ☆236Updated 2 months ago
• cisagov / CHIRP
  A DFIR tool written in Python.
  ☆1,049Updated 3 years ago
• e-m-b-a / emba
  EMBA - The firmware security analyzer
  ☆2,989Updated this week
• klezVirus / inceptor
  Template-Driven AV/EDR Evasion Framework
  ☆1,684Updated last year
• optiv / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,822Updated last year
• a13xp0p0v / linux-kernel-defence-map
  Linux Kernel Defence Map shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and de…
  ☆2,182Updated 5 months ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,097Updated 3 years ago
• roadwy / RIP
  ☆1,466Updated last year
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆426Updated 3 weeks ago
• kevoreilly / CAPEv2
  Malware Configuration And Payload Extraction
  ☆2,462Updated this week
• sysdream / ligolo
  Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/
  ☆1,774Updated 2 years ago
• ashemery / LinuxForensics
  Everything related to Linux Forensics
  ☆701Updated last year