Alternatives and similar repositories for linux-malware

Users that are interested in linux-malware are comparing it to the libraries listed below

• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,136Updated 8 months ago
• nccgroup / exploit_mitigations
  Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
  ☆899Updated 11 months ago
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,439Updated 2 years ago
• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,845Updated last year
• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆841Updated last month
• ForbiddenProgrammer / conti-pentester-guide-leak
  Leaked pentesting manuals given to Conti ransomware crooks
  ☆1,025Updated 3 years ago
• fr0gger / Awesome_Malware_Techniques
  This is a repository of resource about Malware techniques
  ☆794Updated 2 years ago
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,615Updated last year
• vxunderground / VXUG-Papers
  Research code & papers from members of vx-underground.
  ☆1,233Updated 3 years ago
• BC-SECURITY / Beginners-Guide-to-Obfuscation
  ☆1,045Updated 11 months ago
• hasherezade / malware_training_vol1
  Materials for Windows Malware Analysis training (volume 1)
  ☆1,988Updated 10 months ago
• Markakd / DirtyCred
  Kernel exploitation technique
  ☆574Updated last year
• MichaelKoczwara / Awesome-CobaltStrike-Defence
  Defences against Cobalt Strike
  ☆1,283Updated 2 years ago
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,442Updated last year
• p0dalirius / Awesome-RCE-techniques
  Awesome list of step by step techniques to achieve Remote Code Execution on various apps!
  ☆1,886Updated last year
• topotam / PetitPotam
  PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
  ☆1,957Updated 9 months ago
• lockedbyte / CVE-Exploits
  PoC exploits for software vulnerabilities
  ☆680Updated 3 years ago
• redcode-labs / Coldfire
  Golang malware development library
  ☆952Updated 5 months ago
• DavidBuchanan314 / monomorph
  MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
  ☆789Updated 2 years ago
• evilbuffer / malware-and-exploitdev-resources
  ☆541Updated 3 years ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,095Updated 3 years ago
• roadwy / RIP
  ☆1,465Updated last year
• sysdream / ligolo
  Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/
  ☆1,767Updated 2 years ago
• ckane / CS7038-Malware-Analysis
  Course Repository for University of Cincinnati Malware Analysis Class (CS[567]038)
  ☆775Updated 6 months ago
• ihebski / A-Red-Teamer-diaries
  RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
  ☆1,787Updated 11 months ago
• tanc7 / EXOCET-AV-Evasion
  EXOCET - AV-evading, undetectable, payload delivery tool
  ☆840Updated 2 years ago
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆491Updated 10 months ago
• ashemery / LinuxForensics
  Everything related to Linux Forensics
  ☆697Updated last year
• alexandreborges / malwoverview
  Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…
  ☆3,194Updated 3 months ago
• optiv / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,814Updated last year