Alternatives and similar repositories for rootkit:

Users that are interested in rootkit are comparing it to the libraries listed below

• y11en / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆14Updated 6 years ago
• NtRaiseHardError / Providence
  Kernel-mode file scanner
  ☆18Updated 6 years ago
• humeafo / scc
  a C/C++ shellcode compiler based on llvm/clang
  ☆36Updated 8 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆20Updated 5 years ago
• MortenSchenk / LoadLibrary-CFG-Bypass
  Control Flow Guard bypass using LoadLibrary and IsBadCodePtr
  ☆45Updated 8 years ago
• rrbranco / kdf
  PoC || GTFO Article Materials on Kernel Double Free
  ☆12Updated 7 years ago
• codingtest / EMET
  reversed emet tool
  ☆24Updated 12 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆34Updated 7 years ago
• RanchoIce / 44Con2018
  Slides of 44Con 2018
  ☆21Updated 6 years ago
• codingtest / windows_hotpatch
  reverse win7 32bit hotpatch implement
  ☆9Updated 11 years ago
• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆13Updated 8 years ago
• aaaddress1 / Lexa
  Windows Application Loader Running *.Exe files in Memory against Scrylla
  ☆21Updated 5 years ago
• dro / uac-launchinf-poc
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆34Updated 6 years ago
• m0hamed / lkm-rootkit
  A rootkit implemented as a linux kernel module
  ☆17Updated 9 years ago
• killvxk / Researchs
  一些研究
  ☆14Updated 5 years ago
• byck01 / KernelBugTest
  KernelBugTest
  ☆15Updated 6 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆44Updated 6 years ago
• n3k / misc_exploits_pocs
  Miscellaneous old Exploit code and PoCs
  ☆15Updated 5 months ago
• eLoopWoo / kernel-drivers-windows
  Modify data structures in the Windows kernel, hiding processes by PID
  ☆15Updated 7 years ago
• DownWithUp / CVE-Stockpile
  Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.
  ☆48Updated 4 years ago
• kacheo / KernelRootkit
  Linux kernel rootkit to hide certain files and processes.
  ☆36Updated 10 years ago
• tandasat / CVE-2014-0816
  CVE-2014-0816
  ☆25Updated 8 years ago
• zhuhuibeishadiao / exploit-RemoteDesktopServerDriver
  exploit termdd.sys(support kb4499175)
  ☆58Updated 5 years ago
• DownWithUp / CVE-2018-15499
  PoC code for CVE-2018-15499 (exploit race condition for BSoD)
  ☆11Updated 6 years ago
• emc2314 / PEZEncrypt
  PE Infector/Cryptor source code
  ☆15Updated 7 years ago
• tsarpaul / WinRpcTutorial
  A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial
  ☆16Updated 5 years ago
• JohnnyLChang / MBRProtector
  ☆14Updated 8 years ago
• tenable / mIDA
  ☆33Updated 2 years ago
• guidoreina / http_inspect
  HTTP/HTTPS/DNS inspector (windows driver)
  ☆26Updated 6 years ago
• waleedassar / SyscallNumberFinder
  ☆33Updated 3 years ago