thalium / rkchkView external linksLinks
Rust Linux Kernel Module designed for LKM rootkit detection
β59Mar 12, 2025Updated 11 months ago
Alternatives and similar repositories for rkchk
Users that are interested in rkchk are comparing it to the libraries listed below
Sorting:
- Cargo subcommand to build a crate into shellcodeβ26Aug 15, 2024Updated last year
- π‘οΈ Open-source binary protection toolkit for Windows PE. Nanomite, VM protection, anti-debug, and more.β49Updated this week
- hy-rs, pronounced high rise, provides a unified and portable to the hypervisor APIs provided by various platforms.β20Mar 10, 2022Updated 3 years ago
- Make an Linux Kernel rootkit visible again.β59Feb 27, 2025Updated 11 months ago
- A nim port of C5pider's Ekko project.β17Oct 1, 2022Updated 3 years ago
- β18Mar 22, 2025Updated 10 months ago
- A COFF Loader written in Rustβ135Dec 1, 2025Updated 2 months ago
- γβοΈγRing 0 Rootkit for Linux Kernels x86/x86_64 5.x/6.xβ27Apr 10, 2025Updated 10 months ago
- Sleep Obfuscation in Rustβ277Dec 1, 2025Updated 2 months ago
- A synergized Visual Studio and Rust development environmentβ19Jan 25, 2025Updated last year
- Collection of codes focused on Linux rootkitsβ197Oct 22, 2025Updated 3 months ago
- β23Mar 4, 2025Updated 11 months ago
- A collection of FreeBSD rootkit kernel modules and utilitiesβ13Jun 25, 2025Updated 7 months ago
- β10Jul 1, 2023Updated 2 years ago
- Attacking the cleanup_module function of a kernel moduleβ57Jun 30, 2025Updated 7 months ago
- A Rust library along with a Win32 GUI application to determine the driver load order of a Windows system (cf. https://colinfinck.de/postsβ¦β12Jan 26, 2025Updated last year
- break link between dll and it file on diskβ12Sep 2, 2024Updated last year
- A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).β36Oct 26, 2025Updated 3 months ago
- β38Apr 15, 2025Updated 9 months ago
- An i686 & x86_64 position independent implant template for Rust π¦β33Jul 6, 2025Updated 7 months ago
- ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.β86Feb 28, 2025Updated 11 months ago
- The Binary Code Recognition Library for game hacking/modding and function reidentification for linuxβ12Jan 25, 2026Updated 2 weeks ago
- A curated list of awesome resources related to anti virtualization techniquesβ61Jul 15, 2025Updated 6 months ago
- A Rust library for parsing and writing MS Shell Links (shortcuts, *.lnk)β32Sep 2, 2025Updated 5 months ago
- Hunting and injecting RWX 'mockingjay' DLLs in pure nimβ59Dec 11, 2024Updated last year
- Dynamically resolve API function addresses at runtime in a secure manner.β72Nov 11, 2025Updated 3 months ago
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programsβ337Jun 23, 2025Updated 7 months ago
- Enable or Disable TokenPrivilege(s)β15May 17, 2024Updated last year
- EvtPsstβ55Oct 24, 2023Updated 2 years ago
- kubernetes rootkitβ34Dec 18, 2023Updated 2 years ago
- Kernel-space x86_64 Linux rootkit leveraging kprobes and ftrace for syscall hooking (hiding entries and reverse shell backdoor)β20Nov 20, 2025Updated 2 months ago
- Host CLR and run .NET binaries using Rustβ149Dec 23, 2025Updated last month
- A Rust implementation of Internal-Monologue β retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and β¦β191Apr 26, 2025Updated 9 months ago
- Windows Kernel Rootkit in Rustβ679Oct 10, 2025Updated 4 months ago
- Remote administration toolkit for windows, based on Hidden VNC: file manager, keystroke logger, powershellβ35Nov 23, 2025Updated 2 months ago
- Source data & analysis of NSA SECONDDATE packet-injection frameworkβ11Apr 9, 2017Updated 8 years ago
- A Rust port of LayeredSyscall β performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.β161Oct 31, 2024Updated last year
- C++ Staged Shellcode Loader with Evasion capabilities.β97Oct 7, 2024Updated last year
- remote process injections using pool party techniquesβ70Jun 29, 2025Updated 7 months ago