leixiangwu / CSE509-Rootkit
After attackers manage to gain access to a remote (or local) machine and elevate their privileges to "root", they typically want to maintain their access, while hiding their presence from the normal users and administrators of the system. This basic rootkit works on the Linux operating system and is a loadable kernel module which when loaded in…
☆35Updated 8 years ago
Alternatives and similar repositories for CSE509-Rootkit:
Users that are interested in CSE509-Rootkit are comparing it to the libraries listed below
- LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.☆86Updated last year
- Pazuzu: Reflective DLL to run binaries from memory☆213Updated 4 years ago
- Python script to inject and run shellcodes through TLS callbacks☆50Updated 9 years ago
- simple shellcode generator☆112Updated 7 years ago
- A linux rootkit works on kernel 4.0.X or higher☆36Updated 8 years ago
- linux rootkit☆157Updated 7 years ago
- sample linux x86_64 ELF virus☆53Updated 6 years ago
- A gadget finder and a ROP-Chainer tool for x86 platforms☆93Updated 3 years ago
- Windows Reverse Shell shellcode☆61Updated 2 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆219Updated last year
- An attempt at Process Doppelgänging☆184Updated 7 years ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆93Updated 3 years ago
- Windows XP 32-Bit Bootkit☆144Updated 10 years ago
- Linux Kernel Rootkit - To hide modules and ssh service☆51Updated 10 years ago
- An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit☆81Updated 7 years ago
- Process Hollowing techniques as used in many file Crypters (C/C++)☆82Updated 4 years ago
- Cminer is a tool for enumerating the code caves in PE files.☆148Updated last year
- Linux v4.x.x Rootkit☆88Updated 6 months ago
- Bypassing User Account Control (UAC) using TpmInit.exe☆127Updated 8 years ago
- Tinba Banking Trojan☆84Updated 9 years ago
- A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.☆403Updated 10 years ago
- Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia…☆87Updated last year
- Samples about Microsoft RPC and native API calls in Windows C☆61Updated 8 years ago
- ☆65Updated 8 years ago
- kernel exploitation helper class☆76Updated 8 years ago
- Win64/Rovnix - Volume Boot Record Bootkit☆171Updated 9 years ago
- Small script to assemble/disassemble from CLI☆22Updated 2 years ago
- Carberp Banking Trojan☆110Updated 9 years ago
- public bugs/proof of concepts☆48Updated 3 years ago
- Linux kernel modules developed by me for learning purposes☆19Updated 12 years ago