Alternatives and similar repositories for lkm-rootkit:

Users that are interested in lkm-rootkit are comparing it to the libraries listed below

• tkmru / awesome-linux-rootkits
  a summary of linux rootkits published on GitHub
  ☆176Updated 5 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Updated last year
• jordan9001 / superhide
  Example of hooking a linux systemcall
  ☆63Updated 7 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆135Updated 7 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆90Updated 9 months ago
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆247Updated 7 years ago
• rootfoo / rootkit
  Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes
  ☆61Updated 5 years ago
• 0x00pf / 0x00sec_code
  Code for my 0x00sec.org posts
  ☆320Updated 4 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆69Updated 2 years ago
• milabs / khook
  Linux Kernel hooking engine (x86)
  ☆343Updated 5 months ago
• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆171Updated 12 years ago
• koutto / ioctlbf
  Windows Kernel Drivers fuzzer
  ☆342Updated 8 years ago
• bcoles / kasld
  Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address a…
  ☆436Updated last year
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆88Updated 3 years ago
• NoviceLive / research-rootkit
  LibZeroEvil & the Research Rootkit project.
  ☆594Updated 3 years ago
• ixty / mandibule
  linux elf injector for x86 x86_64 arm arm64
  ☆335Updated 6 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆293Updated 9 months ago
• Boyan-MILANOV / ropium
  ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together
  ☆386Updated 2 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆182Updated 6 years ago
• elfmaster / skeksi_virus
  Devestating and awesome Linux X86_64 ELF Virus
  ☆227Updated 2 years ago
• Eterna1 / puszek-rootkit
  linux rootkit
  ☆159Updated 7 years ago
• xpn / ssh-inject
  A ptrace POC by hooking SSH to reveal provided passwords
  ☆181Updated 8 years ago
• yaoyumeng / adore-ng
  linux rootkit adapted for 2.6 and 3.x
  ☆209Updated 9 years ago
• r00tkillah / HORSEPILL
  HORSEPILL rootkit PoC
  ☆228Updated 8 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆116Updated 8 years ago
• 0xKira / qemu-vm-escape
  ☆283Updated 5 years ago
• sam-b / windows_kernel_resources
  Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits
  ☆395Updated 5 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• nbulischeck / tyton
  Kernel-Mode Rootkit Hunter
  ☆369Updated 3 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆51Updated 5 years ago