Alternatives and similar repositories for SLAE

Users that are interested in SLAE are comparing it to the libraries listed below

• rootfoo / rootkit
  Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes
  ☆63Updated 6 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆87Updated 2 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆92Updated last year
• tsarpaul / GLORYHook
  The first Linux hooking framework to allow merging two binary files into one!
  ☆97Updated 8 months ago
• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆181Updated 13 years ago
• landhb / DrawBridge
  Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
  ☆118Updated 2 years ago
• NexusBots / Umbreon-Rootkit
  ☆63Updated 9 years ago
• oblique / elf-infector
  ELF binary infector
  ☆33Updated 14 years ago
• PinkP4nther / Sutekh
  An example rootkit that gives a userland process root permissions
  ☆78Updated 6 years ago
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆24Updated 5 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆58Updated 10 years ago
• dpl0 / phrack
  Copy of the contents at phrack.com
  ☆41Updated 10 months ago
• Srakai / Adun
  A way to backdoor every process
  ☆68Updated 8 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆138Updated 7 years ago
• milabs / stamina
  (Linux Kernel) Stack Monitoring Tool
  ☆48Updated 4 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆32Updated 5 years ago
• nnedkov / swiss_army_rootkit
  ☆34Updated 10 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆54Updated 2 years ago
• En14c / PIvirus
  sample linux x86_64 ELF virus
  ☆54Updated 7 years ago
• maK- / reverse-shell-access-kernel-module
  This is a kernel module invoked reverse shell proof of concept.
  ☆72Updated 6 years ago
• linuxthor / asm
  assembly language examples, mostly Linux
  ☆46Updated 5 years ago
• droberson / icmp-backdoor
  Backdoor that listens for specially crafted ICMP packets and spawns reverse shells.
  ☆73Updated 5 years ago
• buffer / libemu
  x86 emulation and shellcode detection
  ☆154Updated last year
• nisay759 / linux-rootkits
  My little precious collection of Linux 4.x kernel rootkits
  ☆28Updated last year
• martinclauss / syscall_number
  This tool gives you the Linux system call number (32bit and 64bit x86) for a system call name (e.g., read, write, ...).
  ☆26Updated 2 years ago
• Iansus / hideproc-lkm
  Linux 4.9 Loadable Kernel Module to hide processes from system utilities
  ☆67Updated 7 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• jollheef / rootkiticide
  0-ring rootkit revealer for Linux
  ☆29Updated 6 years ago
• jcramb / revshell
  reverse shell with tty emulation, openssl encryption and support for multiple tcp proxies
  ☆28Updated 9 years ago