A Loadable Kernel Module (LKM) Rootkit that hooks the system call table and hides the chosen process(according to your parameter) from 'ls' and 'ps' commands. The Rootkit hijacks stat and getdents system calls.
☆21Dec 24, 2019Updated 6 years ago
Alternatives and similar repositories for Process-Hiding-Rootkit
Users that are interested in Process-Hiding-Rootkit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is simple kernel module can get and replace any linux syscall. Nowadays needs some hacks, on x86 platform. Can be used on ARM and x8…☆12Dec 25, 2012Updated 13 years ago
- My attempt to reverse the Discord nitro token generation function.☆29Sep 28, 2024Updated last year
- Track your beacons in a redteam scoreboard☆15Oct 28, 2020Updated 5 years ago
- Educational collection of LLVM obfuscation passes. (Feel free to use it for your course)☆35Apr 22, 2026Updated 2 months ago
- A LKM rootkit for most newer kernel versions.☆180Sep 17, 2017Updated 8 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- 基于Rust和eBPF实现RDMA内核模块、驱动☆20Feb 28, 2022Updated 4 years ago
- a reliable C based exploit and writeup for CVE-2021-3560.☆40Jun 23, 2021Updated 5 years ago
- Tool to get NT system shell .☆11Jun 29, 2021Updated 5 years ago
- Experimental PoC for unhooking API functions using in-memory patching, without VirtualProtect, for one specific EDR.☆14Jul 9, 2023Updated 2 years ago
- OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…☆13Oct 27, 2024Updated last year
- Tool to dump UEFI runtime drivers implementing runtime services for Windows☆111Dec 24, 2020Updated 5 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆11Aug 18, 2022Updated 3 years ago
- ☆20Sep 8, 2019Updated 6 years ago
- external hack for Among Us (PATCHED)☆37Aug 8, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- [mirror] UPower-powered power alerter (https://sr.ht/~kennylevinsen/poweralertd/)☆16Apr 20, 2024Updated 2 years ago
- Process hider for Linux systems using a kernel agent☆23Dec 18, 2020Updated 5 years ago
- An example of a floating ball for Android and PC☆22Nov 1, 2022Updated 3 years ago
- This guide provides comprehensive techniques for penetration testing Active Directory environments. It covers everything from initial rec…☆22Jul 3, 2025Updated 11 months ago
- WinGPG is a tray-based classical Windows application, Windows NT Explorer shell extension, and a classic GPGv2 distribution. Secure your …☆13Jul 31, 2021Updated 4 years ago
- System Call Integrity Layer - experimental security research☆27Apr 14, 2026Updated 2 months ago
- a small curation of created/stolen scripts for reverse engineering☆12May 3, 2024Updated 2 years ago
- Apply a base system configuration, quickly!☆17Apr 30, 2026Updated last month
- A Python library for parsing the Abstract Syntax Tree (AST) of compiled Solidity files.☆11Dec 1, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆10Mar 1, 2024Updated 2 years ago
- Discarded Section Manual Map☆68Jun 18, 2020Updated 6 years ago
- My experience using Windows API for offensive purposes☆17Jul 10, 2021Updated 4 years ago
- ☆16May 20, 2022Updated 4 years ago
- Zabbix Templates☆13Jul 24, 2020Updated 5 years ago
- A cross-platform tool to work with Security Identifiers (SID) formats.☆17Jun 21, 2025Updated last year
- ☆15May 15, 2021Updated 5 years ago
- auto-ropper☆17Jul 7, 2022Updated 3 years ago
- Automated Persistence and Lateral Movement using GCP Patch Management☆16Aug 11, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A basic Direct Kernel Object Manipulation rootkit that removes a process from the EPROCESS list, hiding it from the Task Manager☆701Mar 26, 2019Updated 7 years ago
- grok patterns for Asterisk log file☆13Oct 15, 2012Updated 13 years ago
- ZTE F660 Routers Authentication Bypass Leading to RCE.☆19Feb 18, 2024Updated 2 years ago
- Automated mirror of https://hg.libsdl.org/SDL/☆12Dec 21, 2021Updated 4 years ago
- A repository of Sysmon For Linux configuration modules☆17Oct 14, 2021Updated 4 years ago
- XML in PowerShell☆15Jan 11, 2024Updated 2 years ago
- Proof of Concept for CVE-2021-1585: Cisco ASA Device Manager RCE☆13Aug 15, 2022Updated 3 years ago