Alternatives and similar repositories for linux-rootkits

Users that are interested in linux-rootkits are comparing it to the libraries listed below

• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• NexusBots / Umbreon-Rootkit
  ☆65Updated 8 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆66Updated 3 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆30Updated 4 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆29Updated 6 years ago
• magisterquis / pcapknock
  Watches for trigger packets, runs commands or spawns a shell
  ☆24Updated 6 years ago
• wumb0 / watershell
  Run commands on linux through those pesky firewalls
  ☆26Updated 9 years ago
• d00rt / ebfuscator
  Ebfuscator: Abusing system errors for binary obfuscation
  ☆52Updated 5 years ago
• spiderpig1297 / kfile-over-icmp
  kfile-over-icmp is an LKM for stealth sending of files over ICMP communication.
  ☆17Updated 4 years ago
• dsnezhkov / exclave
  ☆16Updated 4 years ago
• hatRiot / bugs
  public bugs/proof of concepts
  ☆48Updated 4 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 3 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 5 years ago
• nnedkov / swiss_army_rootkit
  ☆33Updated 9 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆38Updated 9 years ago
• jcramb / revshell
  reverse shell with tty emulation, openssl encryption and support for multiple tcp proxies
  ☆28Updated 9 years ago
• compilepeace / EVIL_RABBIT
  -x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.
  ☆27Updated 4 years ago
• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆22Updated 3 years ago
• narhen / procjack
  PoC of injecting code into a running Linux process
  ☆23Updated 5 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆38Updated 10 years ago
• degenerat3 / CrowdControl
  C2 over web
  ☆8Updated 5 years ago
• m0nad / PSG
  "Polymorphic" shellcode generator (x86)
  ☆23Updated 10 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• asuar078 / raisin
  Reverse shell and rootkit
  ☆19Updated 8 years ago
• b1ack0wl / DVRF
  The Damn Vulnerable Router Firmware Project
  ☆30Updated 7 years ago
• stephenbradshaw / shellcode
  Various shell code I have written
  ☆17Updated 4 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆29Updated 5 years ago
• MortenSchenk / Token-Stealing-Shellcode
  ☆51Updated 8 years ago