compilepeace / EVIL_RABBIT
-x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.
☆27Updated 4 years ago
Alternatives and similar repositories for EVIL_RABBIT:
Users that are interested in EVIL_RABBIT are comparing it to the libraries listed below
- ☆27Updated 5 years ago
- BPFDoor Source Code. Originally found from Chinese Threat Actor Red Menshen☆45Updated 2 years ago
- A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…☆123Updated 3 years ago
- This course is designed to expose students to advanced exploitation techniques. Topics include the use of automated exploitation tools a…☆28Updated 4 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆70Updated 3 years ago
- ☆47Updated 2 years ago
- "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …☆39Updated 5 years ago
- Recreating and reviewing the Windows persistence methods☆38Updated 3 years ago
- A multi-staged malware that contains a kernel mode rootkit and a remote system shell.☆71Updated 3 years ago
- Proxy system calls over an RPC channel☆98Updated 3 years ago
- ☆16Updated 3 years ago
- Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.☆64Updated 7 years ago
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆26Updated 3 years ago
- In line function hooking LKM rootkit☆51Updated 5 years ago
- This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.☆15Updated 2 years ago
- My little precious collection of Linux 4.x kernel rootkits☆26Updated 8 months ago
- ☆55Updated 3 years ago
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆54Updated 2 years ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆29Updated 2 years ago
- Matryoshka - stacked LKM loader☆52Updated last year
- ☆18Updated 4 years ago
- A local LKM rootkit loader/dropper that lists available security mechanisms☆52Updated 3 years ago
- Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware☆26Updated 5 years ago
- Binary to shellcode from an object/executable format 32 & 64-bit PE , ELF☆72Updated 4 years ago
- Rootkit spotter - experimental Linux rootkit finder LKM☆28Updated 4 years ago
- Simple LKM linux kernel rootkit (x86 / x86_64)☆23Updated 4 years ago
- Raw socket library/framework for red team events☆34Updated 2 years ago
- A repository where I share my injection implemintations☆29Updated 4 years ago
- pypykatz plugin for volatility3 framework☆40Updated last year
- Proof of concept for injecting simple shellcode via ptrace into a running process.☆69Updated 2 years ago