Alternatives and similar repositories for adore-ng

Users that are interested in adore-ng are comparing it to the libraries listed below

• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆180Updated 8 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆87Updated 2 years ago
• tkmru / awesome-linux-rootkits
  a summary of linux rootkits published on GitHub
  ☆192Updated 5 years ago
• nbulischeck / tyton
  Kernel-Mode Rootkit Hunter
  ☆376Updated 4 years ago
• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆181Updated 13 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆88Updated 4 years ago
• 0x00pf / 0x00sec_code
  Code for my 0x00sec.org posts
  ☆329Updated 5 years ago
• jordan9001 / superhide
  Example of hooking a linux systemcall
  ☆63Updated 8 years ago
• xpn / ssh-inject
  A ptrace POC by hooking SSH to reveal provided passwords
  ☆188Updated 8 years ago
• ly4k / CurveBall
  PoC for CVE-2020-0601- Windows CryptoAPI (Crypt32.dll)
  ☆892Updated 6 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆92Updated last year
• HiwinCN / HTran
  HTran is a connection bouncer, a kind of proxy server. A “listener” program is hacked stealthily onto an unsuspecting host anywhere on t…
  ☆260Updated 4 years ago
• NoviceLive / research-rootkit
  LibZeroEvil & the Research Rootkit project.
  ☆598Updated 4 years ago
• houjingyi233 / office-exploit-case-study
  ☆385Updated 2 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆155Updated 2 years ago
• mempodippy / cub3
  Proof of concept for LD_PRELOAD malware that uses extended attributes to protect files.
  ☆119Updated 9 years ago
• emptymonkey / mimic
  Hide processes as a normal user in Linux.
  ☆261Updated last year
• Error996 / bdvl
  bdvl
  ☆115Updated 3 years ago
• Spajed / processrefund
  An attempt at Process Doppelgänging
  ☆183Updated 8 years ago
• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆190Updated 8 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆138Updated 7 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆54Updated 2 years ago
• nnedkov / swiss_army_rootkit
  ☆34Updated 9 years ago
• buffer / libemu
  x86 emulation and shellcode detection
  ☆154Updated last year
• chokepoint / azazel
  Azazel is a userland rootkit based off of the original LD_PRELOAD technique from Jynx rootkit. It is more robust and has additional feat…
  ☆808Updated last year
• packz / ropeme
  ROPME is a set of python scripts to generate ROP gadgets and payload.
  ☆148Updated 9 years ago
• ivyl / rootkit
  Sample Rootkit for Linux
  ☆403Updated last year
• v-p-b / avpwn
  List of real-world threats against endpoint protection software
  ☆216Updated 2 months ago
• ixty / mandibule
  linux elf injector for x86 x86_64 arm arm64
  ☆344Updated 7 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 9 years ago