LaPhilosophie / hello-rootkitView external linksLinks
一个基于LKM的Linux内核级rootkit的实现,包含模块隐藏、提权、文件隐藏、进程隐藏、端口隐藏功能
☆114Feb 23, 2024Updated last year
Alternatives and similar repositories for hello-rootkit
Users that are interested in hello-rootkit are comparing it to the libraries listed below
Sorting:
- linux kernel inline hook☆142Oct 26, 2022Updated 3 years ago
- RootShield : The Ultimate Shield for Rooted Android Devices - Protect your rooted Android device from unauthorized file operations and pr…☆20Dec 8, 2025Updated 2 months ago
- The script checks Jenkins endpoints for CVE-2024-43044 by retrieving the Jenkins version from the innstance and comparing it against know…☆19Aug 8, 2024Updated last year
- golang 实现的windows and linux 端口复用工具。☆309Jan 30, 2024Updated 2 years ago
- linux ebpf backdoor demo☆12Nov 20, 2024Updated last year
- 本工具用于解决ollvm编译出来的Linux驱动文件,加载进内核会报错“please compile with -fno-common”的问题☆39Apr 17, 2021Updated 4 years ago
- 一个能够利用MSSQL的xp_cmdshell功能来进行流量代理的脚本,用于在站酷分离且不出网SQL注入进行代理☆107Sep 19, 2022Updated 3 years ago
- powershell 混淆 生成工具☆24Nov 10, 2024Updated last year
- 一款集成了DLL-Session0注入,APC注入,映射注入,线程劫持,函数踩踏,提权的工具(支持BIN加解密)☆144Aug 13, 2024Updated last year
- Zerologon自动化脚本☆97Sep 20, 2023Updated 2 years ago
- Kill Everything AV/EDR☆27Nov 18, 2024Updated last year
- 安卓内存读写驱动 linux kernel (Android) memory tool☆182Sep 2, 2025Updated 5 months ago
- 重构了Cobaltstrike Beacon,行为对国内主流杀软免杀,支持4.1以上的版本。 A cobaltstrike Beacon bypass anti-virus, supports 4.1+ version.☆337Oct 27, 2022Updated 3 years ago
- A Kernel module to break the kernel read-only to modify the syscall_table purpose (only in the Linux Arm64 6.6 Kernel test runs properly)…☆41Feb 2, 2025Updated last year
- ExStudPE Visual Tools 是一个扩展StudPE、LordPE等软件的用于PE(32位)、PE+(64位)、NE、Elf(32位)、Coff、Lib格式二进制可执行目标文件(*.exe、*.dll、*.ocx、*.so、*.lib、*.obj、*.exp等…☆59May 11, 2020Updated 5 years ago
- Binary Hollowing☆94Sep 10, 2024Updated last year
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆221Jun 8, 2024Updated last year
- sprint encode (plan text) get enc password☆45Sep 27, 2021Updated 4 years ago
- A kernel module to read and write memory in a remote process.☆73Aug 27, 2024Updated last year
- silent syscall hooking without modifying sys_call_table/handlers via patching exception handler☆152Apr 22, 2024Updated last year
- Hessian UTF-8 Overlong Encoding☆21Mar 9, 2024Updated last year
- linux x86_64 and arm64 syscall hook☆22Dec 9, 2023Updated 2 years ago
- 非编译时代码混淆,包括代码块拆分、代码乱序、常量加密、代码变异、抹除jcc、局部混淆等,主要提供框架以及思路☆33Mar 12, 2023Updated 2 years ago
- A lightweight port-forwarding and socks proxy tool written in Rust 🦀☆51Jan 13, 2026Updated last month
- portreuse reuseport 端口复用☆61Aug 27, 2023Updated 2 years ago
- JavaPassDump☆272Jan 7, 2022Updated 4 years ago
- 用Go+Fyne开发的,展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图��形化工具。☆125Jan 14, 2025Updated last year
- Universal root exploit for the linux kernel☆38Apr 30, 2024Updated last year
- Automatically parse Malleable C2 profiled into CrossC2 rebinding library source code☆21Feb 13, 2023Updated 3 years ago
- frida常用脚本☆22Jun 22, 2024Updated last year
- Various implementations for C# in memory execution. Assembly.Load() Assembly.LoadFile() AppDomain.ExecuteAssembly()☆35Feb 10, 2021Updated 5 years ago
- One-click injection into the SSHD process to record and send the password for ssh login☆426Mar 12, 2024Updated last year
- 本项目是一个远程控制应用,使用 Golang 开发,允许用户通过 Web 界面远程控制和屏幕监控其他计算机。主要功能包括屏幕共享、鼠标和键盘控制以及键盘记录。☆454Jan 30, 2026Updated 2 weeks ago
- Godzilla插件|内存马|Suo5内存代理|jmg for Godzilla☆243Jun 6, 2024Updated last year
- 将dll exe 等转成shellcode 最后输出exe 可定制加载器模板 支持白文件的捆绑 shellcode 加密☆367Sep 8, 2022Updated 3 years ago
- 基于tls加密通道的端口转发工具,绕过安全设备流量检测。☆18Aug 5, 2023Updated 2 years ago
- ☆35Dec 27, 2025Updated last month
- 分享ABC_123自己改造的ysoserial工具,java反序列化漏洞利用,生成的java反序列化利用链支持jdk1.5版本的老旧系统的利用。☆59Mar 16, 2025Updated 10 months ago
- Linux下用于远程加载可执行文件以达到内存加载的目的☆202Nov 9, 2022Updated 3 years ago