一个基于LKM的Linux内核级rootkit的实现,包含模块隐藏、提权、文件隐藏、进程隐藏、端口隐藏功能
☆117Feb 23, 2024Updated 2 years ago
Alternatives and similar repositories for hello-rootkit
Users that are interested in hello-rootkit are comparing it to the libraries listed below
Sorting:
- linux kernel inline hook☆142Oct 26, 2022Updated 3 years ago
- ☆36Mar 9, 2026Updated last week
- RootShield : The Ultimate Shield for Rooted Android Devices - Protect your rooted Android device from unauthorized file operations and pr…☆20Dec 8, 2025Updated 3 months ago
- golang 实现的windows and linux 端口复用工具。☆310Jan 30, 2024Updated 2 years ago
- 本工具用于解决ollvm编译出来的Linux驱动文件,加载进内核会报错“please compile with -fno-common”的问题☆39Apr 17, 2021Updated 4 years ago
- A kernel module for tracing signal☆31Jan 17, 2023Updated 3 years ago
- 这是一个框架,通过纯CPU生成帧缓冲绘制,绕过游戏GPU渲染检测☆34Aug 14, 2025Updated 7 months ago
- linux x86_64 and arm64 syscall hook☆22Dec 9, 2023Updated 2 years ago
- 安卓内存读写驱动 linux kernel (Android) memory tool☆185Sep 2, 2025Updated 6 months ago
- sprint encode (plan text) get enc password☆45Sep 27, 2021Updated 4 years ago
- panic_log_store A simple kernel module is used to store logs of Linux kernel crash, which can be used by some Android devices without pst…☆19May 6, 2025Updated 10 months ago
- 一款集成了DLL-Session0注入,APC注入,映射注入,线程劫持,函数踩踏,提权的工具(支持BIN加解密)☆145Aug 13, 2024Updated last year
- silent syscall hooking without modifying sys_call_table/handlers via patching exception handler☆153Apr 22, 2024Updated last year
- 一个能够利用MSSQL的xp_cmdshell功能来进行流量代理的脚本,用于在站酷分离且不出网SQL注入进行代理☆107Sep 19, 2022Updated 3 years ago
- 重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.☆337Oct 27, 2022Updated 3 years ago
- A Kernel module to break the kernel read-only to modify the syscall_table purpose (only in the Linux Arm64 6.6 Kernel test runs properly)…☆41Feb 2, 2025Updated last year
- Zerologon自动化脚本☆98Sep 20, 2023Updated 2 years ago
- Android aarch64 kernel driver module providing efficient memory operations, touch simulation and IPC. Features include fast memory remapp…☆98Aug 25, 2025Updated 6 months ago
- A kernel module to read and write memory in a remote process.☆76Aug 27, 2024Updated last year
- ☆20Apr 16, 2024Updated last year
- Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code☆21Feb 13, 2023Updated 3 years ago
- powershell 混淆 生成工具☆24Nov 10, 2024Updated last year
- This is simple kernel module can get and replace any linux syscall. Nowadays needs some hacks, on x86 platform. Can be used on ARM and x8…☆12Dec 25, 2012Updated 13 years ago
- 个人专用 ONEPLUS 5 内核,做了一些基础的反调试修改(从 maps 隐藏特定 lib,最完整最正常的 tracerPid 修改措施)☆82Oct 7, 2021Updated 4 years ago
- Zerologon exploit with restore DC password automatically☆146Mar 15, 2024Updated 2 years ago
- 一个安卓/Linux Arm64的多功能hook库☆22Nov 16, 2025Updated 4 months ago
- Universal root exploit for the linux kernel☆38Apr 30, 2024Updated last year
- 非编译时代码混淆,包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等,主要提供框架以及思路☆33Mar 12, 2023Updated 3 years ago
- linux ebpf backdoor demo☆12Nov 20, 2024Updated last year
- portreuse reuseport 端口复用☆61Aug 27, 2023Updated 2 years ago
- 分享ABC_123自己改造的ysoserial工具,java反序列化漏洞利用,生成的java反序列化利用链支持jdk1.5版本的老旧系统的利用。☆58Mar 16, 2025Updated last year
- A rootkit for Android.☆63Jun 6, 2024Updated last year
- A example hook syscall of ioctl☆25Jan 18, 2025Updated last year
- JavaPassDump☆272Jan 7, 2022Updated 4 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆15Jul 24, 2025Updated 7 months ago
- One-click injection into the SSHD process to record and send the password for ssh login☆427Mar 12, 2024Updated 2 years ago
- Linux技术栈☆908Feb 27, 2026Updated 3 weeks ago
- A lightweight port-forwarding and socks proxy tool written in Rust 🦀☆52Jan 13, 2026Updated 2 months ago