Alternatives and similar repositories for potd

Users that are interested in potd are comparing it to the libraries listed below

• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• elfmaster / static_binary_mitigations
  relros.c applies RELRO to static binaries, and static_to_dyn.c applies ASLR to static binaries.
  ☆34Updated 7 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆41Updated 6 years ago
• oblique / elf-infector
  ELF binary infector
  ☆33Updated 14 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• brainsmoke / ptrace-burrito
  a friendly wrapper around ptrace
  ☆133Updated 3 years ago
• kholia / mips-hacking
  Notes on QEMU and Debian MIPS (big-endian)
  ☆45Updated 6 years ago
• landhb / DrawBridge
  Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
  ☆114Updated last year
• mthbernardes / givemeroot
  LKM Rootkit based on Diamorphine
  ☆15Updated 6 years ago
• macaron-et / wasabi-aeg
  Yet another implementation of AEG (Automated Exploit Generation) using symbolic execution engine Triton.
  ☆35Updated 7 years ago
• nccgroup / TriforceOpenBSDFuzzer
  System call fuzzing of OpenBSD amd64 using TriforceAFL (i.e. AFL and QEMU)
  ☆46Updated 7 years ago
• elfmaster / ecfs_exec
  Be able to execute memory snapshots so they can start running where they left off.
  ☆36Updated 10 years ago
• m0hamed / lkm-rootkit
  A rootkit implemented as a linux kernel module
  ☆17Updated 10 years ago
• stephenrkell / libsystrap
  Monitor, rewrite and/or otherwise trap system calls... on Linux/x86{,-64} only, for now.
  ☆62Updated last week
• kfiros / execmon
  Advanced process execution monitoring utility for linux (procmon like)
  ☆85Updated 9 years ago
• oblique / code-injector
  runtime code injector for Linux
  ☆27Updated 14 years ago
• MerlijnWajer / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆73Updated 6 years ago
• taviso / iknowthis
  iknowthis Linux SystemCall Fuzzer
  ☆20Updated 6 years ago
• scumjr / the-sea-watcher
  Implementation of the SMM rootkit "The Watcher"
  ☆128Updated 3 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆136Updated 7 years ago
• sciencemanx / ftrace
  trace local function calls like strace and ltrace
  ☆71Updated 8 years ago
• nccgroup / libdlmalloc
  Heap analysis tooling for dlmalloc
  ☆32Updated 3 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 7 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Updated 2 years ago
• tianweiz07 / Cloud_Integrity
  Using LibVMI to detect malware
  ☆31Updated 3 years ago
• GitMirar / meltdown-poc
  A PoC implementation of the meltdown attack described in https://meltdownattack.com/meltdown.pdf
  ☆134Updated 7 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆187Updated 6 years ago
• Iansus / hideproc-lkm
  Linux 4.9 Loadable Kernel Module to hide processes from system utilities
  ☆67Updated 7 years ago
• KVM-VMI / nitro
  ☆47Updated 7 years ago
• Granary / granary
  Dynamic binary translation framework for instrumenting the Linux kernel and its modules
  ☆77Updated 7 years ago