Alternatives and similar repositories for linux-rootkits:

Users that are interested in linux-rootkits are comparing it to the libraries listed below

• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• dsnezhkov / exclave
  ☆16Updated 3 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆50Updated last year
• hosom / honeycred
  Utility to inject honey tokens into lsass.
  ☆27Updated 8 years ago
• magisterquis / pcapknock
  Watches for trigger packets, runs commands or spawns a shell
  ☆24Updated 5 years ago
• narhen / procjack
  PoC of injecting code into a running Linux process
  ☆23Updated 5 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆65Updated 3 years ago
• jcramb / revshell
  reverse shell with tty emulation, openssl encryption and support for multiple tcp proxies
  ☆28Updated 8 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆27Updated 4 years ago
• NexusBots / Umbreon-Rootkit
  ☆65Updated 8 years ago
• wumb0 / watershell
  Run commands on linux through those pesky firewalls
  ☆26Updated 9 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆25Updated 3 years ago
• ahhh / presentations
  various slides and presentations I've worked on
  ☆18Updated last year
• c0decave / Shellcode-Lab
  Training material for the Shellcode-Lab, including Slides and Codes
  ☆18Updated 5 years ago
• maaaaz / mimicertz
  A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates
  ☆25Updated 6 years ago
• oneNutW0nder / CatTails
  Raw socket library/framework for red team events
  ☆34Updated 2 years ago
• jackson5sec / ShimDB
  Shim database persistence (Fin7 TTP)
  ☆37Updated 5 years ago
• rastating / slae
  The source code of the SLAE assignments documented at https://rastating.github.io/
  ☆23Updated 6 years ago
• gwillgues / BPFDoor
  BPFDoor Source Code. Originally found from Chinese Threat Actor Red Menshen
  ☆43Updated 2 years ago
• ret2win / siph0n-rootkit
  ☆16Updated 5 years ago
• embedi / tcl_shellcode
  A template project for creating a shellcode for the Cisco IOS in the C language
  ☆34Updated 7 years ago
• zMarch / suspect
  suspect is a simple bash triage tool
  ☆18Updated 6 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆37Updated 9 years ago
• RITRedteam / Sangheili
  Custom SOCKS proxy for redteam
  ☆12Updated 2 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆27Updated 6 years ago
• m101 / hsploit
  HEVD Multi-Exploit by m_101
  ☆23Updated 6 years ago
• t57root / amcsh
  A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.
  ☆30Updated 11 years ago
• ThunderGunExpress / Reflective_PSExec
  ☆45Updated 6 years ago
• kost / rdpcmd-ruby
  Run commands over RDP on massive number of hosts
  ☆11Updated 6 years ago
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆23Updated 4 years ago