Alternatives and similar repositories for LKM-Rootkit

Users that are interested in LKM-Rootkit are comparing it to the libraries listed below

• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆135Updated 5 months ago
• RickdeJager / CVE-2023-4911
  CVE-2023-4911 proof of concept
  ☆169Updated 2 years ago
• Hakumarachi / Bropper
  An automatic Blind ROP exploitation tool
  ☆207Updated 2 years ago
• TurtleARM / CVE-2023-0179-PoC
  ☆214Updated last year
• mansk1es / CVE-2024-21111
  Oracle VirtualBox Elevation of Privilege (Local Privilege Escalation) Vulnerability
  ☆221Updated last year
• carloslack / KoviD
  Red-Team Linux kernel rootkit
  ☆603Updated 3 weeks ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆259Updated 2 years ago
• eeriedusk / nysm
  nysm is a stealth post-exploitation container.
  ☆265Updated 5 months ago
• hackerschoice / bpfhacks
  eBPF hacks
  ☆187Updated 11 months ago
• infobyte / cve-2022-27255
  ☆278Updated 3 years ago
• nick0ve / how-to-bypass-aslr-on-linux-x86_64
  ASLR bypass without infoleak
  ☆163Updated 4 years ago
• xscorp / jsmug
  A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON
  ☆114Updated last year
• cfreal / ten
  A (small) web exploit framework
  ☆97Updated 2 months ago
• synacktiv / CVE-2023-35001
  Pwn2Own Vancouver 2023 Ubuntu LPE exploit
  ☆166Updated 2 years ago
• hackerschoice / bincrypter
  Pack/Encrypt/Obfuscate ELF + SHELL scripts
  ☆391Updated 2 months ago
• pqlx / CVE-2022-1015
  Local privilege escalation PoC for Linux kernel CVE-2022-1015
  ☆202Updated 3 years ago
• BishopFox / forticrack
  Decrypt encrypted Fortienet FortiOS firmware images
  ☆140Updated 2 years ago
• p0dalirius / objectwalker
  A python module to explore the object tree to extract paths to interesting objects in memory.
  ☆102Updated 9 months ago
• RickdeJager / cupshax
  ☆233Updated last year
• h4x0r-dz / CVE-2024-21762
  out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability
  ☆143Updated last year
• hacksysteam / CVE-2023-21608
  Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
  ☆277Updated last year
• Warxim / deluder
  Deluder is a tool for intercepting traffic of proxy unaware applications. Currently, Deluder supports OpenSSL, GnuTLS, SChannel, WinSock …
  ☆207Updated last week
• hackerschoice / ttyinject
  Get root via TTY / TIOCSTI stuffing
  ☆76Updated 6 months ago
• alisaesage / Exploits
  Advanced exploits that I wrote for Pwn2Own competitions and other occasions
  ☆169Updated last year
• lflare / cve-2024-6387-poc
  MIRROR of the original 32-bit PoC for CVE-2024-6387 "regreSSHion" by 7etsuo/cve-2024-6387-poc
  ☆121Updated last year
• ynwarcs / CVE-2025-21298
  Proof of concept & details for CVE-2025-21298
  ☆191Updated 10 months ago
• mav8557 / Father
  LD_PRELOAD rootkit
  ☆138Updated last year
• b1ack0wl / vulnerability-write-ups
  This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.
  ☆147Updated 2 years ago
• MatheuZSecurity / Rootkit
  Collection of codes focused on Linux rootkits
  ☆186Updated last month
• BishopFox / asminject
  Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…
  ☆142Updated 3 years ago