Alternatives and similar repositories for RootKit:

Users that are interested in RootKit are comparing it to the libraries listed below

• HulkOperator / AuthStager
  ☆54Updated 5 months ago
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆68Updated 2 months ago
• 0xTriboulet / Abomination
  A synergized Visual Studio and Rust development environment
  ☆19Updated 2 months ago
• ibaiC / FriendlyFireBOF
  A BOF that suspends non-GUI threads for a target process or resumes them resulting in stealthy process silencing.
  ☆28Updated this week
• pygrum / gimmick
  Section-based payload obfuscation technique for x64
  ☆59Updated 8 months ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆68Updated 5 months ago
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆55Updated last year
• OtterHacker / Hooker
  ☆104Updated 5 months ago
• xelemental / Mal-LNK-Generator
  ☆34Updated 3 weeks ago
• kyleavery / pendulum
  Linux Sleep Obfuscation
  ☆95Updated last year
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated last year
• p0dalirius / pyDescribeNTSecurityDescriptor
  A python tool to parse and describe the contents of a raw ntSecurityDescriptor structure.
  ☆17Updated 2 months ago
• a7t0fwa7 / SymProcSleuth
  A pure C version of SymProcAddress
  ☆26Updated last year
• winsecurity / AMSI-Bypass-HWBP
  ☆21Updated last month
• knight0x07 / NailaoLoader-Hiding-Execution-Flow
  NailaoLoader: Hiding Execution Flow via Patching
  ☆20Updated last month
• brosck / Rebellion
  「⚔️」Ring 0 Rootkit for Linux Kernels x86/x86_64 5.x/6.x
  ☆23Updated last week
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆53Updated 2 months ago
• Real-Cryillic / Sarla
  It's what all the kids are talking about
  ☆12Updated last year
• cocomelonc / offzone-2024-malware-persistence-workshop
  OFFZONE 2024 Malware Persistence workshop
  ☆19Updated 4 months ago
• OtterHacker / AWSRoundRobin
  ☆37Updated last month
• Teach2Breach / hollow_rs
  A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.
  ☆29Updated 2 months ago
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆45Updated last year
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated 10 months ago
• casp3r0x0 / CortexRansomBypass
  Cortex EDR Ransomware protection Bypass
  ☆21Updated 2 months ago
• Yeeb1 / SharpRDPlusSnatcher
  Exploits a flaw in Remote Desktop Plus by monitoring and decrypting temporary .rdp files in %localappdata%/Temp, revealing credentials us…
  ☆16Updated last year
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆48Updated last year
• Slowerzs / KeyJumper
  ☆41Updated 3 weeks ago
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆50Updated 4 months ago
• p0dalirius / FindProcessesWithNamedPipes
  A simple C++ Windows tool to get information about processes exposing named pipes.
  ☆37Updated last month
• Cobaltlad / LSA_reg2PDF
  Dumping LSA secrets: a story about task decorrelation
  ☆14Updated 9 months ago