Academic project of Linux rootkit made for Bachelor Engineering Thesis.
☆119Mar 27, 2026Updated 3 weeks ago
Alternatives and similar repositories for rooty
Users that are interested in rooty are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An LKM rootkit targeting Linux 2.6/3.x on x86(_64), and ARM☆677Nov 21, 2017Updated 8 years ago
- kfile-over-icmp is an LKM for stealth sending of files over ICMP communication.☆18Oct 9, 2020Updated 5 years ago
- Пример руткита для ядра линукс 5☆19Dec 4, 2020Updated 5 years ago
- SSH password logging via PAM☆30Jul 7, 2020Updated 5 years ago
- Red-Team LKM☆633Dec 16, 2025Updated 4 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…☆135Sep 19, 2021Updated 4 years ago
- Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…☆266Dec 6, 2025Updated 4 months ago
- This repository contains Loadable Kernel Modules (LKM) and LD_PRELOAD-based modules designed for penetration testing, red teaming, and se…☆13Feb 15, 2025Updated last year
- Set up your own CTF with NIZKCTF☆14Oct 20, 2017Updated 8 years ago
- Linux Kernel Hacking☆755Apr 10, 2024Updated 2 years ago
- kprochide is an LKM for hiding processes from the userland. The module is able to hide multiple processes and is able to dynamically rece…☆23Oct 9, 2020Updated 5 years ago
- Linux rootkit for Ubuntu 16.04 and 10.04 (Linux Kernels 4.4.0 and 2.6.32), both i386 and amd64☆818Apr 7, 2024Updated 2 years ago
- Linux LD_PRELOAD rootkit (x86 and x86_64 architectures)☆978Dec 11, 2020Updated 5 years ago
- A simple LKM kernel space rootkit for v5.x linux with multiple functions.☆10Aug 13, 2020Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆74Apr 11, 2022Updated 4 years ago
- A collection of Linux kernel rootkits found across the internet taken and put together☆99Aug 31, 2022Updated 3 years ago
- Kiddy - (linux) kernel identity spoofer☆16Mar 18, 2024Updated 2 years ago
- LERN GHIDRA☆95Aug 14, 2025Updated 8 months ago
- Rootkit☆24Nov 15, 2014Updated 11 years ago
- syscall hijacking in 2019☆13Feb 25, 2019Updated 7 years ago
- Fork of LLVM for LTO pass plugins support.☆23Jun 28, 2025Updated 9 months ago
- A collection of FreeBSD rootkit kernel modules and utilities☆13Jun 25, 2025Updated 9 months ago
- arm64 linux position-independent shellcode framework☆31Dec 12, 2025Updated 4 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- This is the list of all rootkits found so far on github and other sites.☆1,438Aug 29, 2025Updated 7 months ago
- ☆138Oct 2, 2021Updated 4 years ago
- Rust crate to run commands as another user☆54Feb 12, 2026Updated 2 months ago
- Universal Linux LKM rootkit, designed to work in any kernel version and both architectures (i686 and x86_64).☆51Jan 15, 2024Updated 2 years ago
- Understanding some of the Anti-Reversing Techniques☆11Oct 6, 2019Updated 6 years ago
- JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.☆182Dec 15, 2012Updated 13 years ago
- Arsenal of modules to beacon postex☆101Mar 13, 2026Updated last month
- A small tool to unmap PE memory dumps.☆11Nov 9, 2023Updated 2 years ago
- Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x up to linux kernel 6.8 on x86_64, hides files, hides process, hides bind shell …☆18Feb 15, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- LibZeroEvil & the Research Rootkit project.☆599Dec 1, 2021Updated 4 years ago
- ☆13Dec 26, 2024Updated last year
- We store attacks and exploits that we've found useful in our research☆13Jun 4, 2015Updated 10 years ago
- Call Stack Spoofing for Rust☆213Jan 28, 2026Updated 2 months ago
- Proof of Concept for CVE-2025-24367☆35Dec 8, 2025Updated 4 months ago
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆29Sep 29, 2025Updated 6 months ago
- Fuzzapi is a tool used for REST API pentesting and uses Fuzzapi gem☆15May 30, 2022Updated 3 years ago