Alternatives and similar repositories for rkduck

Users that are interested in rkduck are comparing it to the libraries listed below

• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆87Updated last year
• nnedkov / swiss_army_rootkit
  ☆33Updated 9 years ago
• hanj4096 / wukong
  A LKM rootkit for Linux kernel 2.6.x, 3.x and 4.x
  ☆43Updated 9 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• NexusBots / Umbreon-Rootkit
  ☆65Updated 8 years ago
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆23Updated 5 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆38Updated 10 years ago
• Srakai / Adun
  A way to backdoor every process
  ☆66Updated 7 years ago
• PinkP4nther / Sutekh
  An example rootkit that gives a userland process root permissions
  ☆77Updated 5 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• droberson / icmp-backdoor
  Backdoor that listens for specially crafted ICMP packets and spawns reverse shells.
  ☆71Updated 5 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 8 years ago
• chokepoint / jynxkit
  JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
  ☆60Updated 12 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆89Updated 3 years ago
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆36Updated 11 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆134Updated 7 years ago
• maK- / reverse-shell-access-kernel-module
  This is a kernel module invoked reverse shell proof of concept.
  ☆72Updated 5 years ago
• 0xfffffffa / apache-rootkit
  A malicious Apache module with rootkit functionality
  ☆1Updated 10 years ago
• Eterna1 / puszek-rootkit
  linux rootkit
  ☆160Updated 7 years ago
• mponcet / subversive
  x86_64 linux rootkit using debug registers
  ☆52Updated 3 years ago
• iagox86 / nbtool
  ☆80Updated 11 years ago
• BorjaMerino / tlsInjector
  Python script to inject and run shellcodes through TLS callbacks
  ☆49Updated 10 years ago
• maK- / maK_it-Linux-Rootkit
  This is a linux rootkit using many of the techniques described on
  ☆166Updated 5 years ago
• mthbernardes / givemeroot
  LKM Rootkit based on Diamorphine
  ☆15Updated 6 years ago
• muffins / rookit_playground
  Educational repository for learning about rootkits and Windows Kernel Hooks.
  ☆49Updated 10 years ago
• hatRiot / shellme
  simple shellcode generator
  ☆113Updated 8 years ago
• jordan9001 / superhide
  Example of hooking a linux systemcall
  ☆63Updated 7 years ago
• abatchy17 / Introduction-To-Manual-Backdooring
  Executables created while writing "Introduction to Manual Backdooring".
  ☆81Updated 8 years ago
• juanschallibaum / Nuk3Gh0st
  Universal Linux LKM rootkit, designed to work in any kernel version and both architectures (i686 and x86_64).
  ☆43Updated last year
• oblique / elf-infector
  ELF binary infector
  ☆32Updated 14 years ago