milabs/kmatryoshka external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

milabs/kmatryoshka

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/milabs/kmatryoshka)

Close

milabs / kmatryoshkaView on GitHubMore

• External links
• Readme badge

Matryoshka - stacked LKM loader

☆54Oct 8, 2023Updated 2 years ago

Alternatives and similar repositories for kmatryoshka

Users that are interested in kmatryoshka are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• milabs / khook

  View on GitHub
  Linux Kernel hooking engine (x86)
  ☆390Oct 14, 2025Updated 6 months ago
• milabs / kmod_hooking_sct

  View on GitHub
  linux kernel system call hooking
  ☆18Dec 13, 2014Updated 11 years ago
• h2hconference / 2018

  View on GitHub
  H2HC 2018 Slides/Materials/Presentations
  ☆36Nov 24, 2020Updated 5 years ago
• milabs / kjector

  View on GitHub
  Code injection from Linux kernel to a process
  ☆24May 19, 2023Updated 2 years ago
• elfmaster / dsym_obfuscate

  View on GitHub
  Obfuscates dynamic symbol table
  ☆136Jan 10, 2019Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• connormcgarr / Shellcode

  View on GitHub
  Various shellcodes
  ☆12Sep 1, 2020Updated 5 years ago
• HFaeiro / Remote-Admin-Tool

  View on GitHub
  Simple remote administration tool. Written in c++ and MASM.
  ☆18May 16, 2018Updated 7 years ago
• therealdreg / enyelkm

  View on GitHub
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Aug 11, 2023Updated 2 years ago
• vnik5287 / kaslr_tsx_bypass

  View on GitHub
  Linux kASLR (Intel TSX/RTM) bypass static library
  ☆78Oct 15, 2017Updated 8 years ago
• vyrus001 / needle

  View on GitHub
  Shellcode process injector
  ☆28May 22, 2020Updated 5 years ago
• ajgb / crypt-curve25519

  View on GitHub
  Crypt::Curve25519
  ☆12Jan 6, 2021Updated 5 years ago
• CSLDepend / exploits

  View on GitHub
  We store attacks and exploits that we've found useful in our research
  ☆13Jun 4, 2015Updated 10 years ago
• ait-aecid / rootkit-detection-ebpf-time-trace

  View on GitHub
  Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.
  ☆29Sep 10, 2025Updated 7 months ago
• milabs / kiddy

  View on GitHub
  Kiddy - (linux) kernel identity spoofer
  ☆16Mar 18, 2024Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• basharbachir / HostingCLR-Bypass-AMSI-Windows-Defender

  View on GitHub
  ☆11Apr 23, 2019Updated 6 years ago
• doar-e / doar-e.github.io

  View on GitHub
  Diary of a reverse-engineer blog
  ☆20Oct 2, 2023Updated 2 years ago
• 0x25bit / darkratPanel

  View on GitHub
  The Web Controller
  ☆10Dec 4, 2019Updated 6 years ago
• volticks / CVE-2025-21692-poc

  View on GitHub
  Proof of concept source code and misc files for my CVE-2025-21692 exploit, kernel version 6.6.75
  ☆40Sep 16, 2025Updated 7 months ago
• connormcgarr / Presentations

  View on GitHub
  ☆30Sep 5, 2025Updated 7 months ago
• nyx0 / Grum

  View on GitHub
  The Grum Spam Bot
  ☆20Feb 25, 2015Updated 11 years ago
• sud0Ru / CPLDCOMTrigger

  View on GitHub
  CPL remote trigger
  ☆44Dec 28, 2025Updated 3 months ago
• Nadharm / CoVirt

  View on GitHub
  A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).
  ☆36Oct 26, 2025Updated 5 months ago
• repnz / autochk-rootkit

  View on GitHub
  Reverse engineered source code of the autochk rootkit
  ☆211Nov 1, 2019Updated 6 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mncoppola / suterusu

  View on GitHub
  An LKM rootkit targeting Linux 2.6/3.x on x86(_64), and ARM
  ☆677Nov 21, 2017Updated 8 years ago
• karol-gruszczyk / win-rootkit

  View on GitHub
  ☆24Feb 21, 2016Updated 10 years ago
• graves / loserland_exec

  View on GitHub
  Load a DLL from memory
  ☆35Nov 19, 2021Updated 4 years ago
• Allevon412 / ClassicAPIUnhooking

  View on GitHub
  ☆16Nov 23, 2021Updated 4 years ago
• sam-b / CVE-2014-4113

  View on GitHub
  Trigger and exploit code for CVE-2014-4113
  ☆42Feb 14, 2016Updated 10 years ago
• yaoyumeng / adore-ng

  View on GitHub
  linux rootkit adapted for 2.6 and 3.x
  ☆222Dec 30, 2015Updated 10 years ago
• xcellerator / linux_kernel_hacking

  View on GitHub
  Linux Kernel Hacking
  ☆755Apr 10, 2024Updated 2 years ago
• zionlion67 / rootkit

  View on GitHub
  Linux kernel module that provides remote backdoor using netfilters , file and pid hiding.
  ☆11Apr 1, 2017Updated 9 years ago
• milabs / awesome-linux-rootkits

  View on GitHub
  awesome-linux-rootkits
  ☆2,055Feb 15, 2026Updated 2 months ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• NinnOgTonic / Out-of-Sight-Out-of-Mind-Rootkit

  View on GitHub
  Rootkit
  ☆24Nov 15, 2014Updated 11 years ago
• mgeeky / HEVD_Kernel_Exploit

  View on GitHub
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆67Oct 24, 2021Updated 4 years ago
• GetRektBoy724 / SyscallShuffler

  View on GitHub
  Your NTDLL vaccine from modern direct syscall methods.
  ☆36Apr 5, 2022Updated 4 years ago
• AzRunRCE / CppHostCLR

  View on GitHub
  C++ Host .NET CLR & Run a assembly directly from ressource (RT_RCDATA) without extraction disk.
  ☆15Mar 18, 2023Updated 3 years ago
• NYAN-x-CAT / Lime-Dropper

  View on GitHub
  Download payload to disk and install it to startup then melt.
  ☆35Apr 9, 2019Updated 7 years ago
• ice799 / injectso64

  View on GitHub
  Stealth's 64bit injectso port
  ☆74Jul 31, 2010Updated 15 years ago
• TheWover / AsyncRAT-VB.NET

  View on GitHub
  Remote Administration Tool For Windows VB.NET
  ☆12Mar 19, 2019Updated 7 years ago