Alternatives and similar repositories for linux-rootkits

Users that are interested in linux-rootkits are comparing it to the libraries listed below

• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆73Updated 4 years ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆222Updated 2 years ago
• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆127Updated 3 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 2 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆255Updated 3 years ago
• IridiumXOR / uclibc-sig
  IDA SIG files for multiarch uClibc library
  ☆38Updated 7 years ago
• jermeyyy / rooty
  Academic project of Linux rootkit made for Bachelor Engineering Thesis.
  ☆105Updated 10 months ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆254Updated last year
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆206Updated last month
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆51Updated 5 years ago
• drtychai / browser-exploitation
  A collection of curated resources and CVEs I use for research.
  ☆106Updated 3 years ago
• ChrisTheCoolHut / Linux_kernel_exploitation
  https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development
  ☆44Updated 3 years ago
• therealdreg / x64dbg-exploiting
  Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs
  ☆89Updated last year
• Sauercloud / RWCTF21-VirtualBox-61-escape
  0day VirtualBox 6.1.2 Escape for RealWorld CTF 2020/2021 CVE-2021-2119
  ☆139Updated 4 years ago
• ocastejon / linux-kernel-learning
  Notes, exploits, and other stuff that I create while learning Linux Kernel exploitation techniques
  ☆93Updated 2 years ago
• binarly-io / Research_Publications
  ☆130Updated last month
• vp777 / Windows-Non-Paged-Pool-Overflow-Exploitation
  Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CV…
  ☆228Updated 2 years ago
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆23Updated 5 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆30Updated last year
• 0vercl0k / pwn2own2023-miami
  Writeups, PoCs of the bugs I found while preparing for the Pwn2Own Miami 2023 contest targeting UaGateway from the OPC UA Server category…
  ☆60Updated last year
• waleedassar / RestrictedKernelLeaks
  ☆161Updated 3 years ago
• arnaugamez / talks
  Slides, recordings and materials of my public presentations, talks and workshops.
  ☆78Updated 2 weeks ago
• cve-north-stars / cve-north-stars.github.io
  Leveraging CVEs as North Stars in vulnerability discovery and comprehension.
  ☆66Updated last year
• chompie1337 / Linux_LPE_io_uring_CVE-2021-41073
  ☆100Updated 3 years ago
• synacktiv / CVE-2021-3492
  PoC for CVE-2021-3492 used at Pwn2Own 2021
  ☆41Updated 3 years ago
• NtRaiseHardError / Kaiser
  Fileless persistence, attacks and anti-forensic capabilties.
  ☆91Updated 6 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆92Updated last year