compilepeace / EVIL_RABBIT
-x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.
☆26Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for EVIL_RABBIT
- ☆26Updated 5 years ago
- A local LKM rootkit loader/dropper that lists available security mechanisms☆52Updated 3 years ago
- In line function hooking LKM rootkit☆51Updated 4 years ago
- Matryoshka - stacked LKM loader☆50Updated last year
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 4 years ago
- ☆44Updated 2 years ago
- Binary to shellcode from an object/executable format 32 & 64-bit PE , ELF☆71Updated 3 years ago
- PoC of injecting code into a running Linux process☆23Updated 5 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆66Updated 2 years ago
- Fileless persistence, attacks and anti-forensic capabilties.☆85Updated 5 years ago
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆24Updated 3 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆42Updated 3 years ago
- Rootkit Detector for UNIX☆61Updated last year
- An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses☆59Updated 2 years ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆48Updated 5 years ago
- Simple LKM linux kernel rootkit (x86 / x86_64)☆21Updated 4 years ago
- ☆15Updated 3 years ago
- ☆31Updated 8 years ago
- yet another hidden LKM hunter☆13Updated last year
- ☆49Updated 4 years ago
- BPFDoor Source Code. Originally found from Chinese Threat Actor Red Menshen☆40Updated 2 years ago
- A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…☆118Updated 3 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 4 years ago
- A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.☆30Updated 11 years ago
- ☆26Updated last week
- Dumping credentials through windbg and pykd☆38Updated last year
- Various shell code I have written☆16Updated 4 years ago