This repository contains Loadable Kernel Modules (LKM) and LD_PRELOAD-based modules designed for penetration testing, red teaming, and security research. These tools enable advanced techniques like process hiding, syscall hooking, and runtime application manipulation.
☆13Feb 15, 2025Updated last year
Alternatives and similar repositories for RootKit
Users that are interested in RootKit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tools for attacking Computer Use Agents☆30Jan 16, 2026Updated 3 months ago
- Evasive shellcode loader with indirect syscalls, Thread name-calling allocation, PoolParty injection☆10Feb 26, 2025Updated last year
- Collection of codes focused on Linux rootkits☆207Oct 22, 2025Updated 6 months ago
- Super performant RAG pipeline for AI apps.☆17Mar 10, 2024Updated 2 years ago
- This is a VxLAN PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion☆30Jul 21, 2025Updated 9 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- One-header configurable C++20 COFF loader☆20Jul 21, 2025Updated 9 months ago
- Hi, guys. In this repo, i'll be posting resources related to different categories of CTF challenges.☆32Nov 5, 2025Updated 5 months ago
- ClickFix attack lures and variants☆10Aug 8, 2025Updated 8 months ago
- ☆26Dec 31, 2025Updated 4 months ago
- All WriteUps and Flags of TryHackMe☆11Nov 24, 2020Updated 5 years ago
- ASPX ShellCode Loader☆54Jan 27, 2024Updated 2 years ago
- iPhoneTracker port to Linux☆18Apr 22, 2011Updated 15 years ago
- Wisper helps to maintain access to windows machine and have some other cool features like UAC Disable,Firewall Disable,Dumping Credential…☆15Apr 3, 2021Updated 5 years ago
- My dotfiles for Linux boxes☆58Apr 18, 2026Updated last week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Event Tracing for Windows EDR bypass in Rust (usermode)☆40Jun 9, 2024Updated last year
- reverse proxy server☆19Jul 7, 2016Updated 9 years ago
- A comprehensive tool for categorizing TryHackMe rooms, including details such as difficulty, room type, subscription status, and much mor…☆27Dec 3, 2025Updated 4 months ago
- Short Python script for parsing Defender VDM signature files.☆10Sep 22, 2024Updated last year
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run M…☆21Jul 14, 2024Updated last year
- ShellcodeFluctuation PoC ported to Nim☆79Oct 14, 2022Updated 3 years ago
- Windows Shell Link (LNK) Proof of Concept☆16Jul 19, 2025Updated 9 months ago
- Public exploits☆16May 28, 2018Updated 7 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆65Jan 21, 2025Updated last year
- Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …☆20Mar 24, 2026Updated last month
- Exploit systems using older WinRAR without knowing their username (unlike other projects)☆35Aug 17, 2025Updated 8 months ago
- 使用kcp实现的socks5正向代理☆12Dec 9, 2023Updated 2 years ago
- My POC implementation of HVNC (Hidden VNC / Hidden Desktop)☆28Dec 30, 2024Updated last year
- ☆26Aug 11, 2025Updated 8 months ago
- C# DInvoke Shellcode Runner☆31Feb 10, 2025Updated last year
- Signature finder (from PE-bear)☆40Aug 25, 2025Updated 8 months ago
- Transfer file over Dns☆10Nov 26, 2024Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A ring0 Loadable Kernel Module (Linux) to log all commnds run on the system.☆17Sep 30, 2025Updated 7 months ago
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆65Apr 2, 2025Updated last year
- Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability☆24Feb 5, 2025Updated last year
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Jun 5, 2023Updated 2 years ago
- peda like debugger script for windbg/windbgx and mingw-gdb☆11Dec 31, 2021Updated 4 years ago
- Docker container for running CobaltStrike 4.7 and above☆25Mar 20, 2025Updated last year
- ☆29Jun 18, 2025Updated 10 months ago