satan🔓 x86 Linux Kernel rootkit for Debian 9 (4.9.0-11-686-pae)
Stars: ✭ 31 (-35.42%)
UmbraA LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malware and more.
Stars: ✭ 98 (+104.17%)
SpacecowWindows Rootkit written in Python
Stars: ✭ 81 (+68.75%)
stegpySimple steganography program based on the LSB method.
Stars: ✭ 74 (+54.17%)
DiamorphineLKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
Stars: ✭ 725 (+1410.42%)
MalwareRootkits | Backdoors | Sniffers | Virus | Ransomware | Steganography | Cryptography | Shellcodes | Webshells | Keylogger | Botnets | Worms | Other Network Tools
Stars: ✭ 156 (+225%)
ebpfkitebpfkit is a rootkit powered by eBPF
Stars: ✭ 472 (+883.33%)
WebshellWebshell && Backdoor Collection
Stars: ✭ 1,056 (+2100%)
rtl8814auDrivers for the rtl8814au chipset wireless adapters (D-Link DWA-192 rev A1)
Stars: ✭ 18 (-62.5%)
HvmiHypervisor Memory Introspection Core Library
Stars: ✭ 438 (+812.5%)
devheartListen to Tux's heartbeat with this awesome Linux Kernel Module ❤️
Stars: ✭ 58 (+20.83%)
Shadow Box For X86Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)
Stars: ✭ 178 (+270.83%)
Www.rootkit.comwww.rootkit.com users section mirror, sql database dump, and a few other files/rootkits.
Stars: ✭ 117 (+143.75%)
Shadow Box For ArmShadow-Box: Lightweight and Practical Kernel Protector for ARM (Presented at BlackHat Asia 2018)
Stars: ✭ 64 (+33.33%)
virtual touchscreenSimple evdev linux device driver and GUI program to simulate multitouch touchscreen
Stars: ✭ 76 (+58.33%)
VlanyLinux LD_PRELOAD rootkit (x86 and x86_64 architectures)
Stars: ✭ 804 (+1575%)
hexo-hide-postsA plugin to hide specific posts from your Hexo blog and make them only accessible by links. (隐藏 Hexo 文章)
Stars: ✭ 149 (+210.42%)
nrf24nrf24l01 linux device driver
Stars: ✭ 20 (-58.33%)
HideprocessA basic Direct Kernel Object Manipulation rootkit that removes a process from the EPROCESS list, hiding it from the Task Manager
Stars: ✭ 329 (+585.42%)
lkm-sandboxCollection of Linux Kernel Modules and PoC to discover, learn and practice Linux Kernel Development
Stars: ✭ 36 (-25%)
lsrootkitRootkit Detector for UNIX
Stars: ✭ 53 (+10.42%)
BdvlLD_PRELOAD Linux rootkit (x86 & ARM)
Stars: ✭ 232 (+383.33%)
KeyHideEasy way to hide Android keyboard on background tap without any effort.
Stars: ✭ 54 (+12.5%)
HiddenwallTool to generate a Linux kernel module for custom rules with Netfilter hooking. (block ports, Hidden mode, functions to protect etc)
Stars: ✭ 187 (+289.58%)
shieldwallzero-trust remote firewall instrumentation
Stars: ✭ 185 (+285.42%)
Android RootkitA rootkit for Android. Based on "Android platform based linux kernel rootkit" from Phrack Issue 68
Stars: ✭ 167 (+247.92%)
tor-rootkitA Python 3 standalone Windows 10 / Linux Rootkit using Tor.
Stars: ✭ 142 (+195.83%)
ebpfkit-monitorebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
Stars: ✭ 80 (+66.67%)
SMM-RootkitSMM rootkit similar to LoJax or MosaicRegressor
Stars: ✭ 44 (-8.33%)
lustre-releaseMirror of official Lustre development repository http://git.whamcloud.com/
Stars: ✭ 35 (-27.08%)
SutekhAn example rootkit that gives a userland process root permissions
Stars: ✭ 62 (+29.17%)
VegileThis tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell
Stars: ✭ 601 (+1152.08%)
Rootkits List DownloadThis is the list of all rootkits found so far on github and other sites.
Stars: ✭ 815 (+1597.92%)
Simple-Antirootkit-SST-UnhookerThis is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks
Stars: ✭ 31 (-35.42%)
HiddenWindows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc
Stars: ✭ 768 (+1500%)
rkorovald_preload userland rootkit
Stars: ✭ 34 (-29.17%)
RootkitLinux rootkit for Ubuntu 16.04 and 10.04 (Linux Kernels 4.4.0 and 2.6.32), both i386 and amd64
Stars: ✭ 601 (+1152.08%)
rkduckLinux v4.x.x Rootkit
Stars: ✭ 83 (+72.92%)
VegileThis tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell
Stars: ✭ 478 (+895.83%)
Emp3r0rlinux post-exploitation framework made by linux user
Stars: ✭ 419 (+772.92%)
S6 pcie microblazePCI Express DIY hacking toolkit for Xilinx SP605
Stars: ✭ 301 (+527.08%)
NtSymbolResolve DOS MZ executable symbols at runtime
Stars: ✭ 78 (+62.5%)
FatherLD_PRELOAD rootkit
Stars: ✭ 59 (+22.92%)
vue-if-botHide stuff from bots (especially cookie consents)
Stars: ✭ 62 (+29.17%)
HideAndSeekHide and seek game recreated for PocketMine-MP
Stars: ✭ 15 (-68.75%)
SlideUpTopBar-for-FoundationSlideUpTopBar is an extension for the Zurb Foundation 5 top-bar component. It hides the top-bar when scrolling down a page & shows it when scrolling back up the page.
Stars: ✭ 47 (-2.08%)
raisinReverse shell and rootkit
Stars: ✭ 18 (-62.5%)
SolarisA local LKM rootkit loader/dropper that lists available security mechanisms
Stars: ✭ 47 (-2.08%)
Php BackdoorYour interpreter isn’t safe anymore — The PHP module backdoor
Stars: ✭ 211 (+339.58%)