h3xduck / UmbraLinks
A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malware and more.
☆129Updated 3 years ago
Alternatives and similar repositories for Umbra
Users that are interested in Umbra are comparing it to the libraries listed below
Sorting:
- A local LKM rootkit loader/dropper that lists available security mechanisms☆52Updated 4 years ago
- ☆55Updated 3 years ago
- LD_PRELOAD rootkit☆135Updated last year
- A Flask-based HTTP(S) command and control (C2) with a web frontend. Malleable agent written in Go.☆36Updated 2 years ago
- ☆37Updated 6 months ago
- An evil bit backdoor for iptables☆54Updated 4 years ago
- (Sim)ulate (Ba)zar Loader☆29Updated 4 years ago
- Linux Kernel module-less implant (backdoor)☆74Updated 4 years ago
- This is a simple example of DLL hijacking enabling proxy execution.☆66Updated 2 years ago
- A shellcode generator with encryption, encoding and polymorphism facilities built-in☆33Updated 3 years ago
- A payload delivery system which embeds payloads in an executable's icon file!☆74Updated last year
- Embed an executable as a PE resource, drops and launches it in runtime.☆62Updated 3 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 3 years ago
- Let's try to create a rootkit!☆20Updated 5 years ago
- Rootkit Development tutorial series. Works on Kernel version 4.15 Can be adapted for 5.3+☆44Updated 3 years ago
- Cross-platform RAT, written in C☆87Updated 2 years ago
- MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit☆41Updated last year
- Grab Firefox post requests by hooking PR_Write function from nss3.dll module using trampoline hook to get passwords and emails of users☆42Updated 2 years ago
- Windows internals and exploitation tricks☆105Updated 2 months ago
- Injects shellcode into remote processes using direct syscalls☆79Updated 4 years ago
- The AMSI server for Avred☆30Updated last year
- Random CVEs☆32Updated 3 months ago
- A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educat…☆92Updated last year
- Malware indetectable, with AV bypass techniques, anti-disassembly, etc.☆105Updated 5 years ago
- Repo for malware development practices I post on my blog☆34Updated 11 months ago
- ☆37Updated 2 years ago
- Stealthy Loader-cum-dropper/stage-1/stager targeting Windows10☆37Updated 2 years ago
- using the gpu to hide your payload☆59Updated 3 years ago
- A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows☆53Updated 4 years ago
- Red Team Operator: Malware Development Essentials Course☆99Updated 5 years ago