Alternatives and similar repositories for potd

Users that are interested in potd are comparing it to the libraries listed below

• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• oblique / elf-infector
  ELF binary infector
  ☆33Updated 14 years ago
• elfmaster / libelfmaster_examples
  Simple ELF tools written to demonstrate libelfmaster capabilities.
  ☆41Updated 7 years ago
• elfmaster / static_binary_mitigations
  relros.c applies RELRO to static binaries, and static_to_dyn.c applies ASLR to static binaries.
  ☆34Updated 7 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• kholia / mips-hacking
  Notes on QEMU and Debian MIPS (big-endian)
  ☆45Updated 6 years ago
• elfmaster / ecfs_exec
  Be able to execute memory snapshots so they can start running where they left off.
  ☆36Updated 10 years ago
• nccgroup / TriforceOpenBSDFuzzer
  System call fuzzing of OpenBSD amd64 using TriforceAFL (i.e. AFL and QEMU)
  ☆46Updated 7 years ago
• m0hamed / lkm-rootkit
  A rootkit implemented as a linux kernel module
  ☆17Updated 10 years ago
• oblique / code-injector
  runtime code injector for Linux
  ☆27Updated 14 years ago
• landhb / DrawBridge
  Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
  ☆114Updated last year
• Iansus / hideproc-lkm
  Linux 4.9 Loadable Kernel Module to hide processes from system utilities
  ☆67Updated 7 years ago
• GitMirar / meltdown-poc
  A PoC implementation of the meltdown attack described in https://meltdownattack.com/meltdown.pdf
  ☆134Updated 7 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆136Updated 7 years ago
• robertdavidgraham / packetdump
  A packet-sniffer for 10gig networks that writes to compressed files. I created this because
  ☆27Updated 8 years ago
• nccgroup / xendbg
  A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermi…
  ☆78Updated 4 years ago
• taviso / iknowthis
  iknowthis Linux SystemCall Fuzzer
  ☆20Updated 6 years ago
• stephenrkell / libsystrap
  Monitor, rewrite and/or otherwise trap system calls... on Linux/x86{,-64} only, for now.
  ☆62Updated last week
• josephjkong / designing-bsd-rootkits
  Code from the book "Designing BSD Rootkits: An Introduction to Kernel Hacking"
  ☆43Updated 8 years ago
• snorez / srcinv
  source code audit tool
  ☆48Updated 4 years ago
• fuhry / linux-memory-dumper
  Script that dumps running process memory from Linux systems using /proc.
  ☆79Updated 12 years ago
• KVM-VMI / nitro
  ☆47Updated 7 years ago
• t0t3m / AFkit
  Anti live forensic linux LKM rootkit
  ☆17Updated 8 years ago
• Granary / granary
  Dynamic binary translation framework for instrumenting the Linux kernel and its modules
  ☆77Updated 7 years ago
• jjyg / ssh_decoder
  ☆35Updated 13 years ago
• KVM-VMI / kvm
  Fork of KVM with Virtual Machine Introspection patches
  ☆37Updated last year
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆53Updated 7 years ago
• chokepoint / jynxkit
  JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
  ☆61Updated 12 years ago
• sciencemanx / ftrace
  trace local function calls like strace and ltrace
  ☆70Updated 8 years ago
• rofl0r / debuglib
  wrapper library for the functionality offered by ptrace. features facilities to enter breakpoint, debug and hook syscalls, etc.
  ☆21Updated 3 years ago