Alternatives and similar repositories for lkm-rootkit

Users that are interested in lkm-rootkit are comparing it to the libraries listed below

• a7vinx / liinux
  A linux rootkit works on kernel 4.0.X or higher
  ☆37Updated 9 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• t0t3m / AFkit
  Anti live forensic linux LKM rootkit
  ☆17Updated 8 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆38Updated 9 years ago
• mthbernardes / givemeroot
  LKM Rootkit based on Diamorphine
  ☆15Updated 6 years ago
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆36Updated 11 years ago
• wekillpeople / ntshutdown-shellcode
  Windows hard shutdown shellcode. Don't need administrator rights.
  ☆13Updated 9 years ago
• mponcet / subversive
  x86_64 linux rootkit using debug registers
  ☆52Updated 3 years ago
• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆30Updated 8 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆38Updated 10 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆44Updated 11 years ago
• williamshowalter / hdroot-bootkit-analysis
  Supporting Files on my analysis of the malware designated hdroot.
  ☆59Updated 8 years ago
• deroko / activationcontexthook
  ☆34Updated 7 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆50Updated 7 years ago
• tandasat / cs_driver
  A sample project for using Capstone from a driver in Visual Studio 2015
  ☆36Updated 9 years ago
• chokepoint / jynxkit
  JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
  ☆60Updated 12 years ago
• int0 / ltmdm64_poc
  ☆28Updated 8 years ago
• maldevel / WinRC4
  RC4 Encryption with CryptoAPI and C
  ☆15Updated 9 years ago
• NinnOgTonic / Out-of-Sight-Out-of-Mind-Rootkit
  Rootkit
  ☆22Updated 10 years ago
• Cn33liz / TpmInitUACAnniversaryBypass
  Bypassing User Account Control (UAC) using TpmInit.exe
  ☆42Updated 8 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 10 years ago
• aaaddress1 / HellKitty-In-VC
  Ring3 Rootkit Backdoor.
  ☆41Updated 9 years ago
• sogeti-esec-lab / REBoot
  Bootkits Revisited
  ☆40Updated 11 years ago
• SekoiaLab / BinaryInjectionMitigation
  Two tools used during our analysis of the Microsoft binary injection mitigation implemented in Edge TH2.
  ☆53Updated 8 years ago
• DataKinds / syscall-rootkit
  Just a proof of concept Linux rootkit that reads from syscalls.
  ☆22Updated 7 years ago