This repository contains Loadable Kernel Modules (LKM) and LD_PRELOAD-based modules designed for penetration testing, red teaming, and security research. These tools enable advanced techniques like process hiding, syscall hooking, and runtime application manipulation.
☆13Feb 15, 2025Updated last year
Alternatives and similar repositories for RootKit
Users that are interested in RootKit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of FreeBSD rootkit kernel modules and utilities☆13Jun 25, 2025Updated 11 months ago
- Tools for attacking Computer Use Agents☆32Jan 16, 2026Updated 4 months ago
- Evasive shellcode loader with indirect syscalls, Thread name-calling allocation, PoolParty injection☆10Feb 26, 2025Updated last year
- Collection of codes focused on Linux rootkits☆211Oct 22, 2025Updated 7 months ago
- Super performant RAG pipeline for AI apps.☆17Mar 10, 2024Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- This is a VxLAN PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion☆31Jul 21, 2025Updated 10 months ago
- One-header configurable C++20 COFF loader☆20Jul 21, 2025Updated 10 months ago
- Certipy in Docker☆13Mar 28, 2024Updated 2 years ago
- Hi, guys. In this repo, i'll be posting resources related to different categories of CTF challenges.☆32Nov 5, 2025Updated 7 months ago
- ☆26Dec 31, 2025Updated 5 months ago
- A malware researching repository.☆19Aug 10, 2021Updated 4 years ago
- My dotfiles for Linux boxes☆58May 16, 2026Updated 3 weeks ago
- Event Tracing for Windows EDR bypass in Rust (usermode)☆41Jun 9, 2024Updated 2 years ago
- reverse proxy server☆20Jul 7, 2016Updated 9 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- When you request Google Chrome to save your password on a given website, it stores it in a "Login Data" file (sqlite database file). In o…☆10Feb 18, 2017Updated 9 years ago
- Malware written in bash to serve as an initial dropper script that will provide a strong foothold on the target device via reverse shells…☆23Sep 18, 2023Updated 2 years ago
- Official MCSR Ranked Wiki Page with VitePress☆19May 17, 2026Updated 3 weeks ago
- Short Python script for parsing Defender VDM signature files.☆10Sep 22, 2024Updated last year
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run M…☆21Jul 14, 2024Updated last year
- ShellcodeFluctuation PoC ported to Nim☆77Oct 14, 2022Updated 3 years ago
- Windows Shell Link (LNK) Proof of Concept☆16Jul 19, 2025Updated 10 months ago
- Public exploits☆16May 28, 2018Updated 8 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆65Jan 21, 2025Updated last year
- Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …☆20Mar 24, 2026Updated 2 months ago
- A Rust-based dropper for shellcode payloads.☆72Mar 21, 2025Updated last year
- 使用kcp实现的socks5正向代理☆12Dec 9, 2023Updated 2 years ago
- My POC implementation of HVNC (Hidden VNC / Hidden Desktop)☆28Dec 30, 2024Updated last year
- ☆26Aug 11, 2025Updated 10 months ago
- A modern web interface for Ollama, built with Nuxt 3 and Vue. Features a clean UI with dark/light modes, model management (copy/rename/de…☆19May 10, 2026Updated last month
- General purpose Discord Bot with the hacker in mind☆13May 10, 2026Updated last month
- C# DInvoke Shellcode Runner☆31Feb 10, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Signature finder (from PE-bear)☆40Aug 25, 2025Updated 9 months ago
- Transfer file over Dns☆10Nov 26, 2024Updated last year
- A ring0 Loadable Kernel Module (Linux) to log all commnds run on the system.☆17Sep 30, 2025Updated 8 months ago
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆64Apr 2, 2025Updated last year
- Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability☆24Feb 5, 2025Updated last year
- A simple rest api application build using go to manage application license key.☆20Feb 25, 2023Updated 3 years ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Jun 5, 2023Updated 3 years ago