Alternatives and similar repositories for lkm-rootkit

Users that are interested in lkm-rootkit are comparing it to the libraries listed below

• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• a7vinx / liinux
  A linux rootkit works on kernel 4.0.X or higher
  ☆37Updated 9 years ago
• mponcet / subversive
  x86_64 linux rootkit using debug registers
  ☆52Updated 3 years ago
• t0t3m / AFkit
  Anti live forensic linux LKM rootkit
  ☆17Updated 8 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• NinnOgTonic / Out-of-Sight-Out-of-Mind-Rootkit
  Rootkit
  ☆22Updated 10 years ago
• SekoiaLab / BinaryInjectionMitigation
  Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.
  ☆53Updated 8 years ago
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆36Updated 11 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆39Updated 9 years ago
• majdi / deadlands
  🐧 A simple kernel-level rootkit
  ☆20Updated 9 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• williamshowalter / hdroot-bootkit-analysis
  Supporting Files on my analysis of the malware designated hdroot.
  ☆59Updated 8 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• RISCYBusiness / Jadoube
  ☆22Updated 8 years ago
• lukdog / backtolife
  Memory forensic tool for process resurrection starting from a memory dump
  ☆20Updated 8 years ago
• sogeti-esec-lab / REBoot
  Bootkits Revisited
  ☆40Updated 11 years ago
• deroko / activationcontexthook
  ☆34Updated 7 years ago
• OsandaMalith / Anti-Debug
  Some of the Anti-Debugging Tricks
  ☆27Updated 8 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆44Updated 11 years ago
• DataKinds / syscall-rootkit
  Just a proof of concept Linux rootkit that reads from syscalls.
  ☆22Updated 7 years ago
• wekillpeople / ntshutdown-shellcode
  Windows hard shutdown shellcode. Don't need administrator rights.
  ☆13Updated 9 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 7 years ago
• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 8 years ago
• muffins / rookit_playground
  Educational repository for learning about rootkits and Windows Kernel Hooks.
  ☆49Updated 10 years ago
• tandasat / cs_driver
  A sample project for using Capstone from a driver in Visual Studio 2015
  ☆36Updated 9 years ago
• TheEnergyStory / malware_analysis
  Malware analyses and helpful scripts
  ☆29Updated 3 years ago
• soad003 / rootkit
  ☆15Updated 9 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆38Updated 10 years ago