Alternatives and similar repositories for linux-malware

Users that are interested in linux-malware are comparing it to the libraries listed below

• nccgroup / exploit_mitigations
  Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
  ☆922Updated last year
• hasherezade / malware_training_vol1
  Materials for Windows Malware Analysis training (volume 1)
  ☆2,024Updated last year
• TheParmak / conti-leaks-englished
  Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.
  ☆617Updated 3 years ago
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,475Updated 3 years ago
• cisagov / CHIRP
  A DFIR tool written in Python.
  ☆1,053Updated 4 years ago
• jstrosch / malware-samples
  Malware samples, analysis exercises and other interesting resources.
  ☆1,607Updated 2 years ago
• fr0gger / Awesome_Malware_Techniques
  This is a repository of resource about Malware techniques
  ☆822Updated 2 years ago
• ForbiddenProgrammer / conti-pentester-guide-leak
  Leaked pentesting manuals given to Conti ransomware crooks
  ☆1,076Updated 4 years ago
• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,157Updated last year
• cert-ee / cuckoo3
  Cuckoo3 is a Python 3 open source automated malware analysis system.
  ☆797Updated last month
• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,936Updated last year
• 0x4143 / malware-gems
  A not so awesome list of malware gems for aspiring malware analysts
  ☆828Updated 3 years ago
• ashemery / LinuxForensics
  Everything related to Linux Forensics
  ☆719Updated 2 years ago
• e-m-b-a / emba
  EMBA - The firmware security analyzer
  ☆3,338Updated last week
• a13xp0p0v / linux-kernel-defence-map
  Linux Kernel Defence Map shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and de…
  ☆2,257Updated last month
• DavidBuchanan314 / monomorph
  MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
  ☆795Updated 3 years ago
• danielpoliakov / lisa
  Sandbox for automated Linux malware analysis.
  ☆485Updated 2 years ago
• saferwall / saferwall
  Collaborative Malware Analysis Platform at Scale
  ☆773Updated 2 weeks ago
• rabbitstack / fibratus
  Adversary tradecraft detection, protection, and hunting
  ☆2,428Updated this week
• Neo23x0 / Raccine
  A Simple Ransomware Vaccine
  ☆974Updated 2 years ago
• roadwy / RIP
  ☆1,456Updated 2 years ago
• vanhoefm / fragattacks
  ☆1,283Updated 9 months ago
• Markakd / DirtyCred
  Kernel exploitation technique
  ☆582Updated 2 years ago
• curated-intel / Ukraine-Cyber-Operations
  Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for…
  ☆937Updated 2 years ago
• ashemery / exploitation-course
  Offensive Software Exploitation Course
  ☆2,396Updated 2 years ago
• milabs / awesome-linux-rootkits
  awesome-linux-rootkits
  ☆2,018Updated last week
• hasherezade / hollows_hunter
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,307Updated 3 months ago
• cristianzsh / freki
  Malware analysis platform
  ☆445Updated 2 years ago
• vxunderground / VXUG-Papers
  Research code & papers from members of vx-underground.
  ☆1,351Updated 4 years ago
• MichaelKoczwara / Awesome-CobaltStrike-Defence
  Defences against Cobalt Strike
  ☆1,293Updated 3 years ago