vkobel / linux-syscall-hook-rootkitLinks
Simple kernel module that hooks the `execve` syscall and waits for `date` to be executed with the `backd00r` argument followed by a PID number, elevating it to root credentials.
☆25Updated 5 years ago
Alternatives and similar repositories for linux-syscall-hook-rootkit
Users that are interested in linux-syscall-hook-rootkit are comparing it to the libraries listed below
Sorting:
- An ongoing attempt to create own hypervisior from scratch in linux.☆52Updated 4 years ago
- A small library to modify all page-table levels of all processes from user space for x86_64 and ARMv8.☆267Updated 5 months ago
- ☆167Updated 9 months ago
- Using ftrace for function hooking in Linux kernel☆282Updated 4 years ago
- Linux Kernel hooking engine (x86)☆367Updated last week
- ☆20Updated 3 years ago
- A git clone of the official mercurial repository☆90Updated 3 weeks ago
- 📡🐧 Linux kernel syscall implementation tracker☆227Updated last week
- Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address a…☆458Updated last year
- Intel Vt-x/EPT based thin-hypervisor for windows with minimum possible code.☆177Updated 8 years ago
- Explore a live Linux kernel's memory using GDB☆117Updated 2 years ago
- Examples for: Learning KVM - implement your own kernel☆379Updated 2 years ago
- A network interface for GDB for Linux Kernel☆71Updated 2 months ago
- ☆12Updated 3 years ago
- Simple AMD-V (SVM) Virtualization Extensions Demo☆20Updated 7 years ago
- Information about Linux system calls on different architectures☆168Updated 2 weeks ago
- ☆60Updated 7 months ago
- A custom ELF linker/loader for installing ET_REL binary patches at runtime☆170Updated 2 weeks ago
- A micro hypervisor for running micro VMs☆266Updated last year
- ☆92Updated last year
- ☆105Updated last year
- KVM-based Virtual Machine Introspection☆351Updated 11 months ago
- Containers for building the Linux kernel or other software with many different compilers☆228Updated last month
- 64bit bare metal hypervisor built from scratch with Intel VT-x☆93Updated 5 years ago
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆117Updated 3 years ago
- PCI device for qemu with mmio, pio, dma☆73Updated 8 years ago
- ☆40Updated 2 years ago
- Arbitrary Speculative Code Execution with Return Instructions☆172Updated last year
- small elf loader☆165Updated last year
- 🌐🐧 Browsable Linux kernel syscall tables built with Systrack (https://github.com/mebeim/systrack)☆202Updated last week