Alternatives and similar repositories for kernel-rootkit-poc

Users that are interested in kernel-rootkit-poc are comparing it to the libraries listed below

• glem0 / ELF-Packer
  Simple Polymorphic x86_64 Runtime Code Segment Cryptor
  ☆59Updated 7 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆30Updated 5 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆32Updated 5 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• elfmaster / saruman
  ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)
  ☆138Updated 7 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆54Updated 2 years ago
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆24Updated 5 years ago
• zeroSteiner / driver-analysis
  ☆17Updated 4 years ago
• NexusBots / Umbreon-Rootkit
  ☆63Updated 9 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆180Updated 8 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆43Updated 10 years ago
• unixist / seccomp-bypass
  Collection of shellcodes that use a variety of syscalls in order to bypass some seccomp configurations
  ☆73Updated 8 years ago
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆112Updated 5 years ago
• redplait / lkcd
  ugly code to check linux kernel memory and dump some internal structures
  ☆48Updated last year
• FernandoDoming / r2diaphora
  Port of the binary diffing library, diaphora, for radare2 and mariadb
  ☆55Updated 2 years ago
• ret2jazzy / ELFPatch
  A library for patching ELFs
  ☆62Updated 5 years ago
• R3x / linux-rootkits
  A collection of Linux kernel rootkits found across the internet taken and put together
  ☆94Updated 3 years ago
• ChrisTheCoolHut / Linux_kernel_exploitation
  https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development
  ☆44Updated 4 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 9 years ago
• Sentinel-One / SKREAM
  SentinelOne's KeRnel Exploits Advanced Mitigations
  ☆54Updated 7 years ago
• nccgroup / DIBF
  Windows NT ioctl bruteforcer and modular fuzzer
  ☆125Updated 7 years ago
• milabs / stamina
  (Linux Kernel) Stack Monitoring Tool
  ☆48Updated 4 years ago
• williballenthin / idawilli
  IDA Pro resources, scripts, and configurations
  ☆163Updated last week
• peperunas / pasticciotto
  Polymorphic VM and PoliCTF '17 reversing challenge.
  ☆73Updated last year
• SinaKarvandi / Misc
  This is a place to share my miscellaneous projects.
  ☆116Updated 5 years ago
• joxeankoret / tahh
  Source codes for "The Antivirus Hackers Handbook" book.
  ☆61Updated 10 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆92Updated last year
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆92Updated 6 years ago