Alternatives and similar repositories for linux-rootkit

Users that are interested in linux-rootkit are comparing it to the libraries listed below

• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆129Updated 3 years ago
• MrTiz / CVE-2020-0688
  Remote Code Execution on Microsoft Exchange Server through fixed cryptographic keys
  ☆20Updated 4 years ago
• f0wl / zipExec_unpack
  Unpacking tool for the zipExec Crypter
  ☆14Updated 3 years ago
• jakabakos / CVE-2023-36884-MS-Office-HTML-RCE
  MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit
  ☆41Updated last year
• corelight / cve-2022-26809
  Detects attempts and successful exploitation of CVE-2022-26809
  ☆33Updated 11 months ago
• scriptchildie / MaliciousVBA
  Reverse shell macro using Word VBA
  ☆15Updated 4 years ago
• mantvydasb / RdpThief
  Extracting Clear Text Passwords from mstsc.exe using API Hooking.
  ☆16Updated 5 years ago
• hackerhouse-opensource / cve-2021-34527
  CVE-2021-34527 AddPrinterDriverEx() Privilege Escalation
  ☆20Updated 2 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Updated 5 years ago
• FlamingSpork / iptable_evil
  An evil bit backdoor for iptables
  ☆53Updated 4 years ago
• knight0x07 / WinRAR-Code-Execution-Vulnerability-CVE-2023-38831
  Understanding WinRAR Code Execution Vulnerability (CVE-2023-38831)
  ☆41Updated 2 years ago
• OccamsXor / sim-ba
  (Sim)ulate (Ba)zar Loader
  ☆29Updated 4 years ago
• jbaines-r7 / overkill
  QNAP N-Day (Probably not CVE-2020-2509)
  ☆14Updated 3 years ago
• ihack4falafel / Dell-Driver-EoP-CVE-2021-21551
  Dell Driver EoP (CVE-2021-21551)
  ☆32Updated 3 years ago
• V3ded / Blog-Lab
  Source files for my posts
  ☆17Updated 2 years ago
• JohnWoodman / stealthInjector
  Injects shellcode into remote processes using direct syscalls
  ☆79Updated 4 years ago
• adhikara13 / CVE-2023-24489-ShareFile
  This project is a Python script that exploits the CVE-2023-24489 vulnerability in ShareFile. It allows remote command execution on the ta…
  ☆12Updated 2 years ago
• shubham0d / CVE-2020-1301
  POC exploit for SMBLost vulnerability (CVE-2020-1301)
  ☆17Updated 5 years ago
• 0vercl0k / paracosme
  Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…
  ☆89Updated last year
• cocomelonc / 2022-04-02-malware-injection-18
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Updated 3 years ago
• josh0xA / K55
  Linux x86_64 Process Injection Utility
  ☆58Updated 4 years ago
• timwhitez / JmpUnhook
  Ntdll Unhooking POC
  ☆19Updated 3 years ago
• jakuta-tech / GhostShell
  Malware indetectable, with AV bypass techniques, anti-disassembly, etc.
  ☆105Updated 5 years ago
• 0vercl0k / CVE-2022-21974
  PoC for CVE-2022-21974 "Roaming Security Rights Management Services Remote Code Execution Vulnerability"
  ☆60Updated 3 years ago
• GeorgePatsias / PayloadFactory
  C# implementation of Shellcode delivery techniques using PInvoke and DInvoke variations for API calling.
  ☆37Updated 3 years ago
• johneiser / MalleableC2Parser
  A library to parse, modify, and implement Malleable C2 profiles
  ☆26Updated 6 years ago
• 0xvpr / Malicious-Software-Research
  A repository dedicated to researching, documenting, developing, and ultimately, defending against various strains of malicious software.
  ☆38Updated last month
• knight0x07 / PoC-Malware-TTPs
  PoC-Malware-TTPs
  ☆49Updated 2 years ago
• sqrtZeroKnowledge / Elasticsearch-Exploit-CVE-2023-31419
  Elasticsearch Stack Overflow Vulnerability
  ☆18Updated last year
• tokyoneon / Invoke-SocksProxy
  Invoke-SocksProxy is a PowerShell script designed to create reverse proxies.
  ☆49Updated 4 years ago