geyslan / SLAE

Related projects: ⓘ

• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆58Updated last year
• nisay759 / linux-rootkits
  My little precious collection of Linux 4.x kernel rootkits
  ☆23Updated last month
• oblique / elf-infector
  ELF binary infector
  ☆32Updated 13 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆57Updated 2 years ago
• milabs / stamina
  (Linux Kernel) Stack Monitoring Tool
  ☆41Updated 2 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆60Updated last year
• nnedkov / swiss_army_rootkit
  ☆31Updated 8 years ago
• maK- / reverse-shell-access-kernel-module
  This is a kernel module invoked reverse shell proof of concept.
  ☆68Updated 4 years ago
• isdrupter / ziggystartux
  A Kaiten rewrite, with much new functionality, and many fixes for the old stuff!
  ☆40Updated 7 years ago
• chkyass / Freebsd-Rootkit
  ☆18Updated 4 years ago
• PinkP4nther / Sutekh
  An example rootkit that gives a userland process root permissions
  ☆74Updated 4 years ago
• teserakt-io / c2
  E4's C2 server
  ☆19Updated 3 years ago
• radareorg / r2pipe-go
  Go API to interact with radare2
  ☆31Updated 10 months ago
• ForensicITGuy / libpreloadvaccine
  Whitelisting LD_PRELOAD libraries using LD_AUDIT
  ☆60Updated 2 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆50Updated 11 months ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆56Updated 9 years ago
• chokepoint / jynxkit
  JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
  ☆56Updated 11 years ago
• djhohnstein / librarian
  Shared library loading application for Linux written in Go.
  ☆16Updated 4 years ago
• Iansus / hideproc-lkm
  Linux 4.9 Loadable Kernel Module to hide processes from system utilities
  ☆66Updated 6 years ago
• rootfoo / rootkit
  Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes
  ☆58Updated 5 years ago
• compilepeace / EVIL_RABBIT
  -x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.
  ☆26Updated 3 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆24Updated 3 years ago
• tsarpaul / GLORYHook
  The first Linux hooking framework to allow merging two binary files into one!
  ☆96Updated 4 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆86Updated last month
• hc0d3r / ldpreload-disable
  disable LD_PRELOAD on linux
  ☆19Updated 8 years ago
• NexusBots / Umbreon-Rootkit
  ☆64Updated 7 years ago
• lucdew / goransomware
  ☆39Updated this week
• c0decave / Shellcode-Lab
  Training material for the Shellcode-Lab, including Slides and Codes
  ☆17Updated 5 years ago
• Srakai / Adun
  A way to backdoor every process
  ☆64Updated 6 years ago
• asuar078 / raisin
  Reverse shell and rootkit
  ☆19Updated 7 years ago