Linux Kernel module-less implant (backdoor)
☆73Mar 11, 2021Updated 4 years ago
Alternatives and similar repositories for kopycat
Users that are interested in kopycat are comparing it to the libraries listed below
Sorting:
- Code injection from Linux kernel to a process☆24May 19, 2023Updated 2 years ago
- An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.☆16Nov 1, 2023Updated 2 years ago
- ☆11Jun 4, 2019Updated 6 years ago
- A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malwar…☆135Sep 19, 2021Updated 4 years ago
- A LKM (Loadable Kernel Module) to execute a command as root; I include a example of using netcat and a compiled(with source and steps on…☆16Oct 8, 2024Updated last year
- kfile-over-icmp is an LKM for stealth sending of files over ICMP communication.☆18Oct 9, 2020Updated 5 years ago
- bdvl☆117Feb 26, 2022Updated 4 years ago
- Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…☆267Dec 6, 2025Updated 2 months ago
- A tool to inject C code into ELF64 binaries☆29May 25, 2021Updated 4 years ago
- Linux Kernel hooking engine (x86)☆387Oct 14, 2025Updated 4 months ago
- CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.☆34Dec 19, 2021Updated 4 years ago
- awesome-linux-rootkits☆2,032Feb 15, 2026Updated 2 weeks ago
- Symbolic execution in radare2 with angr☆39Jul 27, 2021Updated 4 years ago
- Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD☆28Jan 4, 2024Updated 2 years ago
- Windows CIFS/SMB packet generation and SMB networking library☆12Aug 25, 2020Updated 5 years ago
- Writing Radare2 plugins in various languages☆18Sep 22, 2025Updated 5 months ago
- LD_PRELOAD rootkit☆139Feb 29, 2024Updated 2 years ago
- ☆71Feb 15, 2021Updated 5 years ago
- Red-Team LKM☆637Dec 16, 2025Updated 2 months ago
- A local LKM rootkit loader/dropper that lists available security mechanisms☆52Sep 4, 2021Updated 4 years ago
- The LKM rootkit working in Linux Kernels 2.6.x/3.x/4.x/5.x☆132Aug 8, 2023Updated 2 years ago
- Base64 Mutator☆13Feb 13, 2021Updated 5 years ago
- a exec jsp shell, simply like weevely php C/S shell.☆14Jun 21, 2022Updated 3 years ago
- sandbox demo☆11Jan 18, 2024Updated 2 years ago
- Cobalt Strike BOF☆42Dec 10, 2025Updated 2 months ago
- ebpf covert channel rootkit☆15Feb 6, 2024Updated 2 years ago
- Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes☆12Sep 30, 2020Updated 5 years ago
- Rust implementation of lazy_importer☆59Aug 3, 2023Updated 2 years ago
- Rootkit spotter - experimental Linux rootkit finder LKM☆30Oct 11, 2020Updated 5 years ago
- ☆14May 19, 2019Updated 6 years ago
- Crawl (~600K) labeled Portable Exe files from Microsoft Cabs☆14Jul 31, 2021Updated 4 years ago
- Dracula inspired theme for Ghidra☆12Dec 3, 2019Updated 6 years ago
- rootkit for tryhackme king of the hill☆12Apr 7, 2024Updated last year
- Probably the first binary (PE/ELF) infector ever created in GoLang.☆50May 12, 2022Updated 3 years ago
- ☆12Jan 11, 2022Updated 4 years ago
- My ctf-writeups☆12Jan 28, 2019Updated 7 years ago
- x86_64 LKM linux rootkit☆16Jul 1, 2023Updated 2 years ago
- ☆33Sep 24, 2021Updated 4 years ago
- ☆35Mar 20, 2021Updated 4 years ago