Alternatives and similar repositories for rootkit

Users that are interested in rootkit are comparing it to the libraries listed below

• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆177Updated 7 years ago
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆72Updated 2 years ago
• tsarpaul / GLORYHook
  The first Linux hooking framework to allow merging two binary files into one!
  ☆95Updated last month
• chokepoint / Jynx2
  JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
  ☆173Updated 12 years ago
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago
• xpn / ssh-inject
  A ptrace POC by hooking SSH to reveal provided passwords
  ☆182Updated 8 years ago
• dsnezhkov / zombieant
  Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.
  ☆225Updated 5 years ago
• maK- / reverse-shell-access-kernel-module
  This is a kernel module invoked reverse shell proof of concept.
  ☆72Updated 5 years ago
• milabs / lkrg-bypass
  LKRG bypass methods
  ☆72Updated 5 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆73Updated 4 years ago
• milabs / kmatryoshka
  Matryoshka - stacked LKM loader
  ☆52Updated last year
• elfmaster / dt_infect
  ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD
  ☆110Updated 5 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 8 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆51Updated 5 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆86Updated last year
• AonCyberLabs / Cexigua
  Linux based inter-process code injection without ptrace(2)
  ☆250Updated 7 years ago
• xcellerator / libgolf
  Binary Golf Library
  ☆62Updated 4 years ago
• nnedkov / swiss_army_rootkit
  ☆33Updated 9 years ago
• b1ack0wl / DVRF
  The Damn Vulnerable Router Firmware Project
  ☆30Updated 7 years ago
• taviso / scanlimits
  Tool to examine the behaviour of setuid binaries under constrained limits.
  ☆61Updated 4 years ago
• ivision-research / gostringsr2
  Find strings in Go binaries
  ☆53Updated 5 years ago
• Plazmaz / CVE-2019-18634
  A functional exploit for CVE-2019-18634, a BSS overflow in sudo's pwfeedback feature that allows for for privesc
  ☆58Updated 5 years ago
• compilepeace / EVIL_RABBIT
  -x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.
  ☆27Updated 4 years ago
• TowerofHanoi / CTFsubmitter
  A flag submitter service with distributed attackers for attack/defense CTF games.
  ☆73Updated 6 years ago
• Andromeda1957 / Reversing-Challenges
  Reverse engineering challenges
  ☆50Updated 5 years ago
• hacksysteam / WpadEscape
  Sandbox escape using WinHTTP Web Proxy Auto-Discovery Service
  ☆85Updated 5 years ago
• netspooky / reversi
  Generate very tiny reverse shell binaries for Linux~
  ☆76Updated 5 years ago
• 0xricksanchez / fisy-fuzz
  This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.
  ☆147Updated last year
• sandflysecurity / sandfly-processdecloak
  Sandfly Linux Stealth Rootkit Decloaking Utility
  ☆100Updated 2 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆59Updated 5 years ago