An LKM-based Linux kernel security research prototype for studying rootkit behavior and defensive detection techniques.
☆117Feb 23, 2024Updated 2 years ago
Alternatives and similar repositories for hello-rootkit
Users that are interested in hello-rootkit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- linux kernel inline hook☆142Oct 26, 2022Updated 3 years ago
- RootShield : The Ultimate Shield for Rooted Android Devices - Protect your rooted Android device from unauthorized file operations and pr…☆24Dec 8, 2025Updated 6 months ago
- ☆142Jun 26, 2026Updated last week
- golang 实现的windows and linux 端口复用工具。☆309Jan 30, 2024Updated 2 years ago
- 本工具用于解决ollvm编译出来的Linux驱动文件,加载进内核会报错“please compile with -fno-common”的问题☆40Apr 17, 2021Updated 5 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A kernel module for tracing signal☆31Jan 17, 2023Updated 3 years ago
- linux x86_64 and arm64 syscall hook☆22Dec 9, 2023Updated 2 years ago
- 这是一个框架,通过纯CPU生成帧缓冲绘制,绕过游戏GPU渲染检测☆33Aug 14, 2025Updated 10 months ago
- 安卓内存读写驱动 linux kernel (Android) memory tool☆190Sep 2, 2025Updated 10 months ago
- sprint encode (plan text) get enc password☆46Sep 27, 2021Updated 4 years ago
- panic_log_store A simple kernel module is used to store logs of Linux kernel crash, which can be used by some Android devices without pst…☆21May 6, 2025Updated last year
- 一款集成了DLL-Session0注入,APC注入,映射注入,线程劫持,函数踩踏,提权的工具(支持BIN加解密)☆148Aug 13, 2024Updated last year
- silent syscall hooking without modifying sys_call_table/handlers via patching exception handler☆155Apr 22, 2024Updated 2 years ago
- 一个能够利用MSSQL的xp_cmdshell功能来进行流量代理的脚本,用于在站酷分离且不出网SQL注入进行代理☆107Sep 19, 2022Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- 重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.☆342Oct 27, 2022Updated 3 years ago
- 🍂A Kernel module to break the kernel read-only to modify the syscall_table purpose (only in the Linux Arm64 6.6 Kernel test runs properl…☆42Feb 2, 2025Updated last year
- Zerologon自动化脚本☆100Sep 20, 2023Updated 2 years ago
- A kernel module to read and write memory in a remote process.☆79Aug 27, 2024Updated last year
- 🍂 Android aarch64 kernel driver module providing efficient memory operations, touch simulation and IPC. Features include fast memory rem…☆103Aug 25, 2025Updated 10 months ago
- Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code☆20Feb 13, 2023Updated 3 years ago
- ☆20Apr 16, 2024Updated 2 years ago
- powershell 混淆 生成工具☆24Nov 10, 2024Updated last year
- This is simple kernel module can get and replace any linux syscall. Nowadays needs some hacks, on x86 platform. Can be used on ARM and x8…☆12Dec 25, 2012Updated 13 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- 个人专用 ONEPLUS 5 内核,做了一些基础的反调试修改(从 maps 隐藏特定 lib,最完整最正常的 tracerPid 修改措施)☆82Oct 7, 2021Updated 4 years ago
- 一个安卓/Linux Arm64的多功能hook库☆23May 31, 2026Updated last month
- Zerologon exploit with restore DC password automatically☆146Mar 15, 2024Updated 2 years ago
- Universal root exploit for the linux kernel☆40Apr 30, 2024Updated 2 years ago
- linux ebpf backdoor demo☆12Nov 20, 2024Updated last year
- 非编译时代码混淆,包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等,主要提供框架以及思路☆35Mar 12, 2023Updated 3 years ago
- portreuse reuseport 端口复用☆61Aug 27, 2023Updated 2 years ago
- 使用Visral Studio开发ShellCode☆246Oct 11, 2023Updated 2 years ago
- 分享ABC_123自己改造的ysoserial工具,java反序列化漏洞利用,生成的java反序列化利用链支持jdk1.5版本的老旧系统的利用。☆58Mar 16, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The script checks Jenkins endpoints for CVE-2024-43044 by retrieving the Jenkins version from the innstance and comparing it against know…☆21Aug 8, 2024Updated last year
- A rootkit for Android.☆66Jun 6, 2024Updated 2 years ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆15Jul 24, 2025Updated 11 months ago
- JavaPassDump☆275Jan 7, 2022Updated 4 years ago
- One-click injection into the SSHD process to record and send the password for ssh login☆428Mar 12, 2024Updated 2 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- A example hook syscall of ioctl☆26Jan 18, 2025Updated last year