Alternatives and similar repositories for rootkit

Users that are interested in rootkit are comparing it to the libraries listed below

• y11en / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆14Updated 6 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆45Updated 7 years ago
• MortenSchenk / LoadLibrary-CFG-Bypass
  Control Flow Guard bypass using LoadLibrary and IsBadCodePtr
  ☆45Updated 8 years ago
• mponcet / subversive
  x86_64 linux rootkit using debug registers
  ☆53Updated 3 years ago
• RanchoIce / 44Con2018
  Slides of 44Con 2018
  ☆22Updated 7 years ago
• epakskape / greenshellcode
  Green shellcode challenge tools
  ☆22Updated 6 years ago
• dro / uac-launchinf-poc
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆35Updated 7 years ago
• DownWithUp / CVE-Stockpile
  Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.
  ☆50Updated 5 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• zhuhuibeishadiao / exploit-RemoteDesktopServerDriver
  exploit termdd.sys(support kb4499175)
  ☆60Updated 6 years ago
• ohjeongwook / REPack
  Reverse engineering toolkit for exploit/malware analysis
  ☆35Updated 5 years ago
• nsxz / ReflectiveELFLoader
  Code for diskless loading of ELF Shared Library using Reflective DLL Injection
  ☆53Updated 9 years ago
• NoviceLive / shellcoding
  Introduce you to shellcode development.
  ☆23Updated 9 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆22Updated 6 years ago
• 0xAlexei / Publications
  My conference presentations and publications
  ☆26Updated 3 years ago
• leonwxqian / windows-defender-nscript-loader
  A exe loader that can load NScript evaluation engine of Windows Defender/Microsft Security Essential. You can fuzz NScript by using this.…
  ☆28Updated 8 years ago
• tophertimzen / shellcodeTester
  GUI Application in C# to run and disassemble shellcode
  ☆36Updated 8 years ago
• aaaddress1 / Lexa
  Windows Application Loader Running *.Exe files in Memory against Scrylla
  ☆21Updated 5 years ago
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆36Updated 11 years ago
• IOActive / FuzzNDIS
  A Fuzzer for Windows NDIS Drivers OID Handlers
  ☆95Updated 4 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆36Updated 8 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated 2 years ago
• humeafo / scc
  a C/C++ shellcode compiler based on llvm/clang
  ☆39Updated 9 years ago
• eLoopWoo / kernel-drivers-windows
  Modify data structures in the Windows kernel, hiding processes by PID
  ☆16Updated 8 years ago
• deroko / SPPLUAObjectUacBypass
  ☆46Updated 7 years ago
• bigric3 / CVE-2018-4901
  crash poc & Leak info PoC
  ☆18Updated 7 years ago
• progmboy / vul_analyze_doc
  ☆26Updated 8 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆50Updated 5 years ago
• HyperSine / SdoKeyCrypt-sys-local-privilege-elevation
  CVE-2019-9729. Transferred from https://github.com/DoubleLabyrinth/SdoKeyCrypt-sys-local-privilege-elevation
  ☆83Updated 6 years ago
• siberas / CVE-2016-3309_Reloaded
  Exploits for the win32kfull!bFill vulnerability on Win10 x64 RS2 using Bitmap or Palette techniques
  ☆54Updated 8 years ago