Alternatives and similar repositories for linux-rootkits

Users that are interested in linux-rootkits are comparing it to the libraries listed below

• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆67Updated 3 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆74Updated 4 years ago
• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆129Updated 3 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 2 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago
• SourceCodeDeleted / rootkitdev-linux
  Rootkit Development tutorial series. Works on Kernel version 4.15 Can be adapted for 5.3+
  ☆44Updated 3 years ago
• R3tr074 / brokepkg
  The LKM rootkit working in Linux Kernels 2.6.x/3.x/4.x/5.x
  ☆131Updated 2 years ago
• VoidSec / Exploit-Development
  Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
  ☆228Updated 2 years ago
• h0mbre / Windows-Exploits
  ☆91Updated 4 years ago
• jermeyyy / rooty
  Academic project of Linux rootkit made for Bachelor Engineering Thesis.
  ☆108Updated last year
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆30Updated 4 years ago
• waleedassar / RestrictedKernelLeaks
  ☆163Updated 3 years ago
• d3npa / freebsd-rootkits
  Exercises from Designing BSD Rootkits working in 2020 with FreeBSD 12.2
  ☆49Updated 2 years ago
• IridiumXOR / uclibc-sig
  IDA SIG files for multiarch uClibc library
  ☆38Updated 7 years ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆90Updated 2 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• connormcgarr / Kernel-Exploits
  Kernel Exploits
  ☆257Updated 4 years ago
• GunshipPenguin / kiteshield
  Packer/Protector for x86-64 ELF binaries on Linux
  ☆158Updated 4 years ago
• 0vercl0k / CVE-2021-32537
  PoC for CVE-2021-32537: an out-of-bounds memory access that leads to pool corruption in the Windows kernel.
  ☆57Updated 4 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆176Updated 7 years ago
• chompie1337 / Linux_LPE_io_uring_CVE-2021-41073
  ☆100Updated 3 years ago
• liba2k / Insomni-Hack-2022
  Breaking Secure Boot with SMM
  ☆41Updated 3 years ago
• ayoubfaouzi / linux-kernel
  Linux kernel internals' notes
  ☆20Updated last year
• Error996 / bdvl
  bdvl
  ☆114Updated 3 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆30Updated 2 years ago
• therealdreg / x64dbg-exploiting
  Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs
  ☆89Updated last year
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆23Updated 5 years ago
• kiks7 / KRWX
  Kernel Read Write Execute
  ☆84Updated 11 months ago
• redcode-labs / BMJ
  Code snippets for bare-metal malware development
  ☆98Updated 3 years ago
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆106Updated 11 months ago