yaoyumeng / adore-ngLinks
linux rootkit adapted for 2.6 and 3.x
☆212Updated 9 years ago
Alternatives and similar repositories for adore-ng
Users that are interested in adore-ng are comparing it to the libraries listed below
Sorting:
- A LKM rootkit for most newer kernel versions.☆177Updated 7 years ago
- LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry.☆86Updated last year
- Kernel-Mode Rootkit Hunter☆370Updated 3 years ago
- a summary of linux rootkits published on GitHub☆178Updated 5 years ago
- Linux v4.x.x Rootkit☆91Updated 11 months ago
- JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.☆174Updated 12 years ago
- Linux Rootkit Scanner☆89Updated 3 years ago
- Example of hooking a linux systemcall☆63Updated 7 years ago
- A ptrace POC by hooking SSH to reveal provided passwords☆184Updated 8 years ago
- ☆384Updated last year
- LibZeroEvil & the Research Rootkit project.☆593Updated 3 years ago
- Code for my 0x00sec.org posts☆324Updated 4 years ago
- x86 emulation and shellcode detection☆152Updated last year
- Azazel is a userland rootkit based off of the original LD_PRELOAD technique from Jynx rootkit. It is more robust and has additional feat…☆791Updated last year
- PoC for CVE-2020-0601- Windows CryptoAPI (Crypt32.dll)☆890Updated 5 years ago
- bdvl☆113Updated 3 years ago
- ROPME is a set of python scripts to generate ROP gadgets and payload.☆148Updated 9 years ago
- An attempt at Process Doppelgänging☆181Updated 7 years ago
- linux elf injector for x86 x86_64 arm arm64☆338Updated 7 years ago
- Patching ROP-encoded shellcodes into PEs☆187Updated 7 years ago
- Proof of concept for LD_PRELOAD malware that uses extended attributes to protect files.☆118Updated 9 years ago
- Cminer is a tool for enumerating the code caves in PE files.☆152Updated 2 years ago
- Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes☆61Updated 6 years ago
- ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)☆135Updated 7 years ago
- HTran is a connection bouncer, a kind of proxy server. A “listener” program is hacked stealthily onto an unsuspecting host anywhere on t…☆258Updated 4 years ago
- An LKM rootkit targeting Linux 2.6/3.x on x86(_64), and ARM☆660Updated 7 years ago
- Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py☆328Updated 2 years ago
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆117Updated 8 years ago
- A malicious Apache module with rootkit functionality☆1Updated 10 years ago
- Linux based inter-process code injection without ptrace(2)☆252Updated 7 years ago