Alternatives and similar repositories for bds_lkm_ftrace

Users that are interested in bds_lkm_ftrace are comparing it to the libraries listed below

• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆74Updated 4 years ago
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆135Updated 6 months ago
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆29Updated 3 months ago
• akamai / Linux-Process-Injection
  ☆84Updated last year
• BishopFox / asminject
  Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…
  ☆143Updated 3 years ago
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆91Updated 3 years ago
• Notselwyn / netkit
  Linux rootkit for educational purposes
  ☆33Updated last year
• h3xduck / Umbra
  A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…
  ☆130Updated 4 years ago
• mav8557 / Father
  LD_PRELOAD rootkit
  ☆137Updated last year
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• R3tr074 / brokepkg
  The LKM rootkit working in Linux Kernels 2.6.x/3.x/4.x/5.x
  ☆132Updated 2 years ago
• FFRI / ShadeBIOS
  PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
  ☆60Updated 5 months ago
• jermeyyy / rooty
  Academic project of Linux rootkit made for Bachelor Engineering Thesis.
  ☆116Updated last year
• Error996 / bdvl
  bdvl
  ☆115Updated 3 years ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆92Updated 2 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆24Updated 2 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆31Updated 2 years ago
• FFRI / orom-backdoor-research
  PoC code and tools for Black Hat USA 2024
  ☆24Updated last year
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆261Updated 2 weeks ago
• HackingThings / OneBootloaderToLoadThemAll
  One Bootloader to Load Them All - Research materials, Code , Etc.
  ☆61Updated 3 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆54Updated 2 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 3 years ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆104Updated last year
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆56Updated 9 months ago
• io-tl / Mara
  Mara is a userland pty/tty sniffer
  ☆53Updated 2 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago
• forrest-orr / Exploits
  A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…
  ☆122Updated 3 years ago
• anvilsecure / ulexecve
  ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…
  ☆197Updated last year
• TheN00bBuilder / cve-2024-11477-writeup
  CVE-2024-11477 7Zip Code Execution Writeup and Analysis
  ☆65Updated last year
• tandasat / CVE-2023-36427
  Report and exploit of CVE-2023-36427
  ☆88Updated 2 years ago