Alternatives and similar repositories for rkduck:

Users that are interested in rkduck are comparing it to the libraries listed below

• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Updated last year
• varshapaidi / Kernel_Rootkit
  Linux Kernel Rootkit - To hide modules and ssh service
  ☆51Updated 10 years ago
• nnedkov / swiss_army_rootkit
  ☆33Updated 9 years ago
• droberson / icmp-backdoor
  Backdoor that listens for specially crafted ICMP packets and spawns reverse shells.
  ☆68Updated 5 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆116Updated 8 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆50Updated last year
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆86Updated 3 years ago
• Eterna1 / puszek-rootkit
  linux rootkit
  ☆159Updated 7 years ago
• maK- / reverse-shell-access-kernel-module
  This is a kernel module invoked reverse shell proof of concept.
  ☆72Updated 5 years ago
• xpn / ssh-inject
  A ptrace POC by hooking SSH to reveal provided passwords
  ☆181Updated 7 years ago
• maK- / maK_it-Linux-Rootkit
  This is a linux rootkit using many of the techniques described on
  ☆166Updated 5 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆214Updated 4 years ago
• FSecureLABS / CVE-2016-7255
  An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit
  ☆81Updated 8 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• hanj4096 / wukong
  A LKM rootkit for Linux kernel 2.6.x, 3.x and 4.x
  ☆43Updated 8 years ago
• rlarabee / exploits
  ☆93Updated 6 years ago
• Srakai / Adun
  A way to backdoor every process
  ☆65Updated 7 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆130Updated 6 years ago
• nsarlin / BackdoorLinux
  Small Backdoor/rootkit for linux kernel
  ☆21Updated 11 years ago
• Cn33liz / HSEVD-StackOverflowX64
  HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass
  ☆61Updated 7 years ago
• NexusBots / Umbreon-Rootkit
  ☆65Updated 8 years ago
• chokepoint / jynxkit
  JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
  ☆58Updated 12 years ago
• nmulasmajic / CVE-2018-8897
  Implements the POP/MOV SS (CVE-2018-8897) vulnerability by bugchecking the machine (local DoS).
  ☆74Updated 6 years ago
• hc0d3r / tas
  A tiny framework for easily manipulate the tty and create fake binaries.
  ☆155Updated 5 years ago
• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆167Updated 12 years ago
• PinkP4nther / Sutekh
  An example rootkit that gives a userland process root permissions
  ☆77Updated 5 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆37Updated 9 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆148Updated last year
• securifera / cowcron
  Cronbased Dirty Cow Exploit
  ☆31Updated 8 years ago
• hal3002 / rooty
  libpcap based ICMP encrypted backdoor for linux.
  ☆130Updated 3 years ago