Alternatives and similar repositories for linux-syscall-hook-rootkit:

Users that are interested in linux-syscall-hook-rootkit are comparing it to the libraries listed below

• intel / vbh
  ☆90Updated 9 months ago
• wkz / kmemd
  Explore a live Linux kernel's memory using GDB
  ☆113Updated 2 years ago
• misc0110 / PTEditor
  A small library to modify all page-table levels of all processes from user space for x86_64 and ARMv8.
  ☆249Updated 2 months ago
• khale / elf-hijack
  Example of using ELF hacking to inject malicious code into a target binary
  ☆21Updated 4 years ago
• bediger4000 / userlandexec
  userland exec for Linux x86_64
  ☆66Updated 2 years ago
• rohaaan / hypervisor-for-beginners
  Intel Vt-x/EPT based thin-hypervisor for windows with minimum possible code.
  ☆166Updated 7 years ago
• martinradev / gdb-pt-dump
  ☆148Updated 2 weeks ago
• shubham0d / ProtoVirt
  An ongoing attempt to create own hypervisior from scratch in linux.
  ☆48Updated 3 years ago
• therealdreg / linux_kernel_debug_disassemble_ida_vmware
  Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)
  ☆36Updated last year
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆259Updated 3 years ago
• chillancezen / ZeldaOS.x86_64
  64bit bare metal hypervisor built from scratch with Intel VT-x
  ☆88Updated 4 years ago
• sysprogs / kgdboe
  A network interface for GDB for Linux Kernel
  ☆65Updated last year
• uberspark / uberxmhf
  uber eXtensible Micro-Hypervisor Framework
  ☆29Updated 7 months ago
• eyalz800 / zpp_hypervisor
  A very simple hypervisor for learning experience.
  ☆135Updated 3 years ago
• Bareflank / boxy
  bareflank based hypervisor with guest support
  ☆59Updated 4 years ago
• yabits / ebcvm
  EFI Byte Code Virtual Machine in userspace
  ☆77Updated last year
• milabs / lkrg-bypass
  LKRG bypass methods
  ☆71Updated 5 years ago
• kirschju / debugmenot
  Collection of simple anti-debugging tricks for Linux
  ☆57Updated 6 years ago
• tandasat / Hello-VT-rp
  A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.
  ☆95Updated 9 months ago
• dbhi / binhook
  A survey of techniques to hook and/or replace functions in executable binaries or shared libraries
  ☆25Updated 4 years ago
• matsu / bitvisor
  A git clone of the official mercurial repository
  ☆85Updated last month
• tandasat / barevisor
  A bare minimum hypervisor on AMD and Intel processors for learners.
  ☆223Updated 3 weeks ago
• JordyZomer / kernel_challenges
  ☆36Updated 3 years ago
• eruffaldi / uefiboot
  Tutorial on making UEFI with CMake and VirtualBox/QEmu
  ☆21Updated 6 years ago
• mars-research / lvd-linux
  ☆19Updated 2 years ago
• eklitzke / ptrace-call-userspace
  Example of how to use the ptrace(2) system call to call a userspace method.
  ☆145Updated 5 years ago
• hrw / syscalls-table
  Information about Linux system calls on different architectures
  ☆147Updated this week
• shubham0d / Immutable-file-linux
  A small fun project to protect a file from writing using ftrace hooking.
  ☆24Updated 3 years ago
• milabs / stamina
  (Linux Kernel) Stack Monitoring Tool
  ☆42Updated 2 years ago
• trailofbits / bpf_tutorials_code
  This repository contains the companion code from the "All your tracing are belong to BPF" blog posts
  ☆18Updated last year