Alternatives and similar repositories for lsrootkit

Users that are interested in lsrootkit are comparing it to the libraries listed below

• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆43Updated 10 years ago
• mponcet / subversive
  x86_64 linux rootkit using debug registers
  ☆53Updated 3 years ago
• dgoulet / kjackal
  Linux Rootkit Scanner
  ☆87Updated 3 years ago
• therealdreg / enyelkm
  LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.
  ☆87Updated 2 years ago
• williamshowalter / hdroot-bootkit-analysis
  Supporting Files on my analysis of the malware designated hdroot.
  ☆59Updated 8 years ago
• abatchy17 / HEVD-Exploits
  Exploit code used for the HackSysExtremeVulnerableDriver.
  ☆43Updated 7 years ago
• chokepoint / jynxkit
  JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
  ☆60Updated 12 years ago
• ThisIsSecurity / sinkhole
  Miscellanous scripts used for malware analysis
  ☆23Updated 7 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆30Updated 5 years ago
• PinkP4nther / Sutekh
  An example rootkit that gives a userland process root permissions
  ☆77Updated 6 years ago
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆36Updated 11 years ago
• m0hamed / lkm-rootkit
  A rootkit implemented as a linux kernel module
  ☆17Updated 10 years ago
• aaaddress1 / vtMal
  Malware Sandbox Emulation in Python @ HITCON 2018
  ☆46Updated 7 years ago
• helpsystems / Agafi
  A gadget finder and a ROP-Chainer tool for x86 platforms
  ☆95Updated 4 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• En14c / LilyOfTheValley
  Simple LKM linux kernel rootkit (x86 / x86_64)
  ☆24Updated 5 years ago
• hanj4096 / wukong
  A LKM rootkit for Linux kernel 2.6.x, 3.x and 4.x
  ☆44Updated 9 years ago
• QuokkaLight / rkduck
  Linux v4.x.x Rootkit
  ☆94Updated last year
• nmulasmajic / CVE-2018-8897
  Implements the POP/MOV SS (CVE-2018-8897) vulnerability by bugchecking the machine (local DoS).
  ☆79Updated 7 years ago
• CheckPointSW / Cyber-Research
  General purpose repository for miscellaneous scripts, pcaps and malware IOCs that we share with the info-sec research community
  ☆39Updated 5 years ago
• blacknbunny / peanalyzer
  Advanced Portable Executable File Analyzer And Disassembler 32 & 64 Bit
  ☆100Updated 6 years ago
• NexusBots / Umbreon-Rootkit
  ☆65Updated 9 years ago
• Iansus / hideproc-lkm
  Linux 4.9 Loadable Kernel Module to hide processes from system utilities
  ☆67Updated 7 years ago
• MortenSchenk / Token-Stealing-Shellcode
  ☆54Updated 8 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆59Updated 5 years ago
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆92Updated 6 years ago
• srlkhmi / DeViL
  It is demonstration tool that contains collection techniques to detect the virtualisation environment in Linux Operating System.
  ☆22Updated 7 years ago
• lukdog / backtolife
  Memory forensic tool for process resurrection starting from a memory dump
  ☆20Updated 8 years ago
• 0x71 / cuckoo-linux
  Linux malware analysis based on Cuckoo Sandbox.
  ☆41Updated 2 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 8 years ago