Cheat sheet to detect and remove linux kernel rootkit
☆78Dec 16, 2024Updated last year
Alternatives and similar repositories for detect-lkm-rootkit-cheatsheet
Users that are interested in detect-lkm-rootkit-cheatsheet are comparing it to the libraries listed below
Sorting:
- Make an Linux Kernel rootkit visible again.☆59Feb 27, 2025Updated last year
- ☆13Dec 24, 2023Updated 2 years ago
- ☆25Dec 3, 2024Updated last year
- Linux kernel integrity monitor for detecting syscall hooking☆73Feb 16, 2026Updated 3 weeks ago
- ☆15May 3, 2024Updated last year
- yet another hidden LKM hunter☆32Sep 18, 2025Updated 5 months ago
- This is a simple process injection made in C for Linux systems☆30Sep 23, 2023Updated 2 years ago
- ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.☆86Feb 28, 2025Updated last year
- Attacking the cleanup_module function of a kernel module☆56Jun 30, 2025Updated 8 months ago
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆29Sep 29, 2025Updated 5 months ago
- Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report☆14Feb 6, 2025Updated last year
- ☆12Mar 24, 2018Updated 7 years ago
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆15Apr 10, 2025Updated 11 months ago
- Read Windows message table entries.☆11Feb 5, 2023Updated 3 years ago
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆18Jun 26, 2025Updated 8 months ago
- Uma lista de recursos para quem deseja aprender sobre Physical Pentesting☆12Jul 28, 2025Updated 7 months ago
- Exploiting CVE-2014-3153, AKA Towelroot.☆13Jan 16, 2021Updated 5 years ago
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆144Updated this week
- ☆59Oct 24, 2024Updated last year
- A PoC to Simulate Ransomware Attack on AWS Environment☆33Oct 14, 2024Updated last year
- macos-collector - Automated Collection of macOS Forensic Artifacts for DFIR☆29Jan 29, 2026Updated last month
- PoC multi-layer protector for ELF32 x86 binaries☆12Feb 26, 2022Updated 4 years ago
- Framework for in-VM test execution and monitoring, inspired by Sandsifter☆15Feb 23, 2026Updated 2 weeks ago
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs☆337Feb 27, 2026Updated last week
- Demonized Shell is an Advanced Tool for persistence in linux.☆441Jan 5, 2025Updated last year
- Extract messages from a local Microsoft Teams installation☆15Jan 14, 2023Updated 3 years ago
- A repository to store community malware research notes and findings.☆15Feb 13, 2026Updated 3 weeks ago
- A collection of CVEs weaponized by ransomware operators☆129Oct 13, 2025Updated 4 months ago
- web based c2 🏴☠️☆15Aug 10, 2024Updated last year
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆14Jan 28, 2022Updated 4 years ago
- Parsers for .mdf file of Microsoft SQL Server (MSSQL)☆15Mar 28, 2020Updated 5 years ago
- 「🧊」Ring 3 Rootkit for Windows 10☆60Dec 7, 2024Updated last year
- Create malware knowledge graphs from analysis reports☆39Dec 6, 2023Updated 2 years ago
- My collection of Cloud Security Resources☆16Apr 16, 2025Updated 10 months ago
- Repo for hugo generated files☆13Feb 4, 2026Updated last month
- PoC for CVE-2019-10149, this vulnerability could be xploited betwen 4-87 to 4.91 version of Exim server.☆14Jun 18, 2019Updated 6 years ago
- ☆13Jun 27, 2023Updated 2 years ago
- 📧 [Research] E-Mail Injection: Vulnerable applications☆17May 26, 2024Updated last year
- This repository contains a variety of plugins and scripts, related to the Volatility framework.☆17Feb 9, 2025Updated last year