R3x / linux-rootkits
A collection of Linux kernel rootkits found across the internet taken and put together
☆73Updated 2 years ago
Alternatives and similar repositories for linux-rootkits:
Users that are interested in linux-rootkits are comparing it to the libraries listed below
- Linux Kernel module-less implant (backdoor)☆72Updated 4 years ago
- A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…☆122Updated 3 years ago
- An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses☆62Updated 3 years ago
- A utility to fix intentionally corrupted UPX packed files.☆85Updated last year
- Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)☆220Updated last year
- ☆158Updated 3 years ago
- Kernel Exploits☆250Updated 3 years ago
- Dectect syscall hooking using eBPF☆149Updated last year
- bdvl☆113Updated 3 years ago
- Exercises from Designing BSD Rootkits working in 2020 with FreeBSD 12.2☆46Updated 2 years ago
- Static Binary Instrumentation tool for Windows x64 executables☆198Updated last month
- Linux kernel internals' notes☆19Updated 7 months ago
- Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…☆247Updated last year
- Linux rootkit for educational purposes☆30Updated 11 months ago
- https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development☆42Updated 3 years ago
- Code injection from Linux kernel to a process☆19Updated last year
- IDA SIG files for multiarch uClibc library☆38Updated 6 years ago
- Slides, recordings and materials of my public presentations, talks and workshops.☆75Updated this week
- Windows Kernel Programming☆124Updated 4 years ago
- 0day VirtualBox 6.1.2 Escape for RealWorld CTF 2020/2021 CVE-2021-2119☆139Updated 4 years ago
- Proof of concept for injecting simple shellcode via ptrace into a running process.☆69Updated 2 years ago
- ☆118Updated 3 weeks ago
- In line function hooking LKM rootkit☆51Updated 5 years ago
- ☆78Updated last month
- ☆142Updated last year
- An ELF / PE binary packer written in pure C, made for fun☆86Updated 11 months ago
- Linpmem is a linux memory acquisition tool☆78Updated 10 months ago
- ☆101Updated 2 years ago
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆29Updated last year
- Rootkit spotter - experimental Linux rootkit finder LKM☆27Updated 4 years ago