Alternatives and similar repositories for lkm-rootkit

Users that are interested in lkm-rootkit are comparing it to the libraries listed below

• yaoyumeng / adore-ng
  linux rootkit adapted for 2.6 and 3.x
  ☆217Updated 10 years ago
• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆182Updated 13 years ago
• strozfriedberg / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆255Updated 8 years ago
• tkmru / awesome-linux-rootkits
  a summary of linux rootkits published on GitHub
  ☆191Updated 5 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆138Updated 7 years ago
• rootfoo / rootkit
  Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes
  ☆62Updated 6 years ago
• milabs / khook
  Linux Kernel hooking engine (x86)
  ☆384Updated 2 months ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆87Updated 2 years ago
• ixty / mandibule
  linux elf injector for x86 x86_64 arm arm64
  ☆344Updated 7 years ago
• 0x00pf / 0x00sec_code
  Code for my 0x00sec.org posts
  ☆330Updated 5 years ago
• jordan9001 / superhide
  Example of hooking a linux systemcall
  ☆63Updated 8 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆92Updated last year
• elfmaster / skeksi_virus
  Devestating and awesome Linux X86_64 ELF Virus
  ☆234Updated 3 years ago
• zznop / drow
  Injects code into ELF executables post-build
  ☆237Updated last year
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆87Updated 3 years ago
• 0xKira / qemu-vm-escape
  ☆285Updated 5 years ago
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆93Updated 3 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆54Updated 2 years ago
• Boyan-MILANOV / ropium
  ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together
  ☆388Updated 2 years ago
• packz / ropeme
  ROPME is a set of python scripts to generate ROP gadgets and payload.
  ☆148Updated 9 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 3 years ago
• xrw67 / bootkit
  Linux BootKit
  ☆32Updated 8 years ago
• unixist / seccomp-bypass
  Collection of shellcodes that use a variety of syscalls in order to bypass some seccomp configurations
  ☆73Updated 8 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 9 years ago
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆112Updated 5 years ago
• piotrflorczyk / cve-2019-1458_POC
  POC for cve-2019-1458
  ☆177Updated 3 years ago
• a13xp0p0v / kernel-hack-drill
  Linux kernel exploitation experiments
  ☆379Updated last week
• googleprojectzero / bochspwn-reloaded
  A Bochs-based instrumentation performing kernel memory taint tracking to detect disclosure of uninitialized memory to ring 3
  ☆310Updated 6 years ago
• corelan / windbglib
  Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py
  ☆333Updated 3 years ago
• kkamagui / shadow-box-for-x86
  Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
  ☆188Updated 6 years ago