Alternatives and similar repositories for bds_lkm_ftrace

Users that are interested in bds_lkm_ftrace are comparing it to the libraries listed below

• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆73Updated 4 years ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆104Updated last year
• Notselwyn / netkit
  Linux rootkit for educational purposes
  ☆33Updated last year
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆136Updated 6 months ago
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆29Updated 2 months ago
• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆131Updated 4 years ago
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆88Updated 3 years ago
• FFRI / ShadeBIOS
  PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
  ☆59Updated 4 months ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆24Updated 2 years ago
• akamai / Linux-Process-Injection
  ☆83Updated last year
• R3tr074 / brokepkg
  The LKM rootkit working in Linux Kernels 2.6.x/3.x/4.x/5.x
  ☆132Updated 2 years ago
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆45Updated 5 years ago
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆89Updated 2 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆31Updated 2 years ago
• ucsb-seclab / popkorn-artifact
  ☆84Updated 3 months ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆90Updated 2 years ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆260Updated 2 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• mav8557 / Father
  LD_PRELOAD rootkit
  ☆138Updated last year
• ic3qu33n / michelangelo-reanimator
  Michelangelo REanimator bootkit and REcon 2023 talk slides/materials
  ☆30Updated last year
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆56Updated 11 months ago
• FFRI / orom-backdoor-research
  PoC code and tools for Black Hat USA 2024
  ☆26Updated last year
• roddux / germy
  GERMY is a Linux Kernel n-day in the N_GSM line discipline
  ☆49Updated last year
• jermeyyy / rooty
  Academic project of Linux rootkit made for Bachelor Engineering Thesis.
  ☆116Updated last year
• 0vercl0k / rp-bf.rs
  rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump
  ☆122Updated last year
• anvilsecure / ulexecve
  ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…
  ☆197Updated last year
• Error996 / bdvl
  bdvl
  ☆115Updated 3 years ago
• exploits-forsale / 24h2-nt-exploit
  Exploit targeting NT kernel in 24H2 Windows Insider Preview
  ☆147Updated last year
• forrest-orr / Exploits
  A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…
  ☆122Updated 3 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆54Updated 2 years ago