vkobel / linux-syscall-hook-rootkit
Simple kernel module that hooks the `execve` syscall and waits for `date` to be executed with the `backd00r` argument followed by a PID number, elevating it to root credentials.
☆23Updated 5 years ago
Alternatives and similar repositories for linux-syscall-hook-rootkit:
Users that are interested in linux-syscall-hook-rootkit are comparing it to the libraries listed below
- Explore a live Linux kernel's memory using GDB☆114Updated 2 years ago
- A small library to modify all page-table levels of all processes from user space for x86_64 and ARMv8.☆253Updated 5 months ago
- ☆157Updated 3 months ago
- An ongoing attempt to create own hypervisior from scratch in linux.☆49Updated 3 years ago
- bareflank based hypervisor with guest support☆60Updated 4 years ago
- EFI Byte Code Virtual Machine in userspace☆77Updated 2 years ago
- ☆12Updated 3 years ago
- ugly code to check linux kernel memory and dump some internal structures☆46Updated 5 months ago
- Collection of Linux Kernel Modules and PoC to discover, learn and practice Linux Kernel Development☆51Updated 4 years ago
- A tiny debugger implement the GDB Remote Serial Protocol. Can work on i386, x86_64, ARM and PowerPC.☆162Updated 2 years ago
- Scripts for kernel hacking, development and testing on qemu☆35Updated last year
- Helper script for Linux kernel disassemble or debugging with IDA Pro on VMware + GDB stub (including some symbols helpers)☆36Updated last year
- A git clone of the official mercurial repository☆88Updated last week
- A bare-metal x86 instruction set fuzzer a la Sandsifter☆67Updated last year
- userland exec for Linux x86_64☆67Updated 2 years ago
- notes about glibc, ld-so and more.☆40Updated 4 years ago
- A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.☆105Updated last year
- ☆19Updated 3 years ago
- ☆29Updated 5 years ago
- A network interface for GDB for Linux Kernel☆67Updated last year
- A dynamically loadable virtual-machine based rootkit designed for Linux Kernel v5.13.0 using AMD-V (SVM).☆29Updated 2 years ago
- LKRG bypass methods☆72Updated 5 years ago
- A small fun project to protect a file from writing using ftrace hooking.☆25Updated 3 years ago
- Intel Vt-x/EPT based thin-hypervisor for windows with minimum possible code.☆176Updated 7 years ago
- A tool to enable fuzzing for Spectre vulnerabilities☆30Updated 5 years ago
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆62Updated 8 months ago
- A collection of Linux kernel modules for educational purposes☆40Updated 8 years ago
- A bare minimum hypervisor on AMD and Intel processors for learners.☆260Updated 2 months ago
- PCI device for qemu with mmio, pio, dma☆74Updated 8 years ago
- 64bit bare metal hypervisor built from scratch with Intel VT-x☆93Updated 4 years ago