Alternatives and similar repositories for linux-rootkits

Users that are interested in linux-rootkits are comparing it to the libraries listed below

• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• t57root / amcsh
  A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.
  ☆30Updated 12 years ago
• magisterquis / pcapknock
  Watches for trigger packets, runs commands or spawns a shell
  ☆24Updated 6 years ago
• dsnezhkov / exclave
  ☆16Updated 4 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• jcramb / revshell
  reverse shell with tty emulation, openssl encryption and support for multiple tcp proxies
  ☆28Updated 9 years ago
• compilepeace / EVIL_RABBIT
  -x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.
  ☆27Updated 4 years ago
• narhen / procjack
  PoC of injecting code into a running Linux process
  ☆23Updated 5 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆38Updated 9 years ago
• buffermet / sewers
  Modular rootkit framework.
  ☆29Updated 4 years ago
• NexusBots / Umbreon-Rootkit
  ☆65Updated 8 years ago
• Iansus / hideproc-lkm
  Linux 4.9 Loadable Kernel Module to hide processes from system utilities
  ☆67Updated 6 years ago
• maaaaz / mimicertz
  A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates
  ☆24Updated 6 years ago
• oneNutW0nder / CatTails
  Raw socket library/framework for red team events
  ☆34Updated 2 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆66Updated 3 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• py7hagoras / OfficeMacro64
  This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…
  ☆21Updated 5 years ago
• SoldierX / freebsd_mac_rootkits
  Abusing the FreeBSD MAC framework for rootkits
  ☆11Updated 7 years ago
• hanj4096 / wukong
  A LKM rootkit for Linux kernel 2.6.x, 3.x and 4.x
  ☆43Updated 9 years ago
• ThunderGunExpress / Reflective_PSExec
  ☆45Updated 6 years ago
• nnedkov / swiss_army_rootkit
  ☆33Updated 9 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 8 years ago
• m0nad / PSG
  "Polymorphic" shellcode generator (x86)
  ☆23Updated 10 years ago
• linuxthor / rkspotter
  Rootkit spotter - experimental Linux rootkit finder LKM
  ☆30Updated 4 years ago
• upils / redirect-lib
  Library of traffic redirectors
  ☆26Updated 5 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆38Updated 10 years ago
• 0xC0D1F1ED / cpp_vs_payload_template
  Visual Studio (C++) Solution Template for Payloads
  ☆18Updated 5 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• amitwaisel / Malproxy
  Proxy system calls over an RPC channel
  ☆98Updated 3 years ago
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 3 years ago