Alternatives and similar repositories for potd

Users that are interested in potd are comparing it to the libraries listed below

• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• oblique / elf-infector
  ELF binary infector
  ☆33Updated 14 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• m0hamed / lkm-rootkit
  A rootkit implemented as a linux kernel module
  ☆18Updated 10 years ago
• elfmaster / static_binary_mitigations
  relros.c applies RELRO to static binaries, and static_to_dyn.c applies ASLR to static binaries.
  ☆34Updated 7 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆41Updated 7 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆138Updated 7 years ago
• oblique / code-injector
  runtime code injector for Linux
  ☆26Updated 14 years ago
• chokepoint / jynxkit
  JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
  ☆60Updated 13 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆87Updated 2 years ago
• Iansus / hideproc-lkm
  Linux 4.9 Loadable Kernel Module to hide processes from system utilities
  ☆67Updated 7 years ago
• josephjkong / designing-bsd-rootkits
  Code from the book "Designing BSD Rootkits: An Introduction to Kernel Hacking"
  ☆45Updated 9 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆88Updated 4 years ago
• chokepoint / CryptHook
  TCP/UDP symmetric encryption tunnel wrapper
  ☆123Updated 5 years ago
• 0x71 / cuckoo-linux
  Linux malware analysis based on Cuckoo Sandbox.
  ☆41Updated 2 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆92Updated last year
• mthbernardes / givemeroot
  LKM Rootkit based on Diamorphine
  ☆15Updated 7 years ago
• taviso / iknowthis
  iknowthis Linux SystemCall Fuzzer
  ☆20Updated 6 years ago
• elfmaster / ecfs_exec
  Be able to execute memory snapshots so they can start running where they left off.
  ☆36Updated 10 years ago
• nccgroup / TriforceOpenBSDFuzzer
  System call fuzzing of OpenBSD amd64 using TriforceAFL (i.e. AFL and QEMU)
  ☆46Updated 8 years ago
• Mipu94 / BroIDS_Unicorn
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Updated 9 years ago
• robertdavidgraham / packetdump
  A packet-sniffer for 10gig networks that writes to compressed files. I created this because
  ☆27Updated 8 years ago
• t0t3m / AFkit
  Anti live forensic linux LKM rootkit
  ☆18Updated 8 years ago
• landhb / DrawBridge
  Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
  ☆118Updated 2 years ago
• jjyg / ssh_decoder
  ☆35Updated 13 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆43Updated 10 years ago
• snorez / srcinv
  source code audit tool
  ☆48Updated 4 years ago
• lukdog / backtolife
  Memory forensic tool for process resurrection starting from a memory dump
  ☆20Updated 8 years ago
• chokepoint / seqack
  SEQ/Ack signature triggered SSL back connect
  ☆10Updated 9 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆54Updated 7 years ago