Alternatives and similar repositories for linux-syscall-hook-rootkit:

Users that are interested in linux-syscall-hook-rootkit are comparing it to the libraries listed below

• wkz / kmemd
  Explore a live Linux kernel's memory using GDB
  ☆114Updated 2 years ago
• misc0110 / PTEditor
  A small library to modify all page-table levels of all processes from user space for x86_64 and ARMv8.
  ☆250Updated 5 months ago
• milabs / khook
  Linux Kernel hooking engine (x86)
  ☆340Updated 3 months ago
• martinradev / gdb-pt-dump
  ☆156Updated 2 months ago
• bediger4000 / userlandexec
  userland exec for Linux x86_64
  ☆66Updated 2 years ago
• tandasat / Hello-VT-rp
  A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.
  ☆101Updated last year
• matsu / bitvisor
  A git clone of the official mercurial repository
  ☆89Updated 3 months ago
• bcoles / kasld
  Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address a…
  ☆436Updated 11 months ago
• redplait / lkcd
  ugly code to check linux kernel memory and dump some internal structures
  ☆46Updated 4 months ago
• shubham0d / ProtoVirt
  An ongoing attempt to create own hypervisior from scratch in linux.
  ☆49Updated 3 years ago
• jha / linux-kernel-hook
  A small kernel module that can hook arbitrary syscalls on x86_64
  ☆52Updated 5 years ago
• abysamross / simple-linux-kernel-tcp-client-server
  A simple in-kernel tcp client and server implemented as LKMs
  ☆53Updated last year
• Bareflank / boxy
  bareflank based hypervisor with guest support
  ☆60Updated 4 years ago
• intel / vbh
  ☆90Updated 11 months ago
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆266Updated 4 years ago
• dbhi / binhook
  A survey of techniques to hook and/or replace functions in executable binaries or shared libraries
  ☆27Updated 4 years ago
• therealdreg / linux_kernel_debug_disassemble_ida_vmware
  Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)
  ☆35Updated last year
• eyalz800 / zpp_hypervisor
  A very simple hypervisor for learning experience.
  ☆136Updated 3 years ago
• compsec-snu / tiktag
  TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)
  ☆63Updated 4 months ago
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆73Updated 2 years ago
• chillancezen / ZeldaOS.x86_64
  64bit bare metal hypervisor built from scratch with Intel VT-x
  ☆91Updated 4 years ago
• yabits / ebcvm
  EFI Byte Code Virtual Machine in userspace
  ☆77Updated 2 years ago
• kirschju / debugmenot
  Collection of simple anti-debugging tricks for Linux
  ☆55Updated 6 years ago
• shubham0d / Immutable-file-linux
  A small fun project to protect a file from writing using ftrace hooking.
  ☆25Updated 3 years ago
• resilar / psyscall
  Linux syscall() injection
  ☆36Updated 4 years ago
• UzL-ITS / SEVurity
  ☆13Updated 4 years ago
• KVM-VMI / kvm-vmi
  KVM-based Virtual Machine Introspection
  ☆331Updated 5 months ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆173Updated 7 years ago
• milabs / lkrg-bypass
  LKRG bypass methods
  ☆71Updated 5 years ago
• rmusser01 / hyperdbg
  Automatically exported from code.google.com/p/hyperdbg
  ☆104Updated 9 years ago