Awesome Open Source

Programming Languages

Search results for kernel rootkit

60 search results found

Diamorphine ⭐ 1,895

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)

Hidden ⭐ 1,892

🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc

Nidhogg ⭐ 1,453

Nidhogg is an all-in-one simple to use rootkit.

Triplecross ⭐ 1,381

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

Awesome Linux Rootkits ⭐ 1,064

awesome-linux-rootkits

Chaos Rootkit ⭐ 578

Now You See Me, Now You Don't

Rootkit ⭐ 544

Linux rootkit for Ubuntu 16.04 and 10.04 (Linux Kernels 4.4.0 and 2.6.32), both i386 and amd64

Research Rootkit ⭐ 531

LibZeroEvil & the Research Rootkit project.

Kernel Module Fun ⭐ 382

Some fun things you can do with kernel modules (all "bad ideas")

Rootkit Rs ⭐ 375

Rusty Rootkit - Windows Kernel Rookit in Rust

Spectre ⭐ 358

A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.

Infinityhookpro ⭐ 346

InfinityHookPro Win7 -> Win11 latest

Kernel-Mode Rootkit Hunter

Vectorkernel ⭐ 242

PoCs for Kernelmode rootkit techniques research.

Jormungandr ⭐ 201

Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.

Linux kernel rootkit

Shadow Box For X86 ⭐ 168

Shadow-Box: Lightweight and Practical Kernel Protector for x86 (Presented at BlackHat Asia 2017/2018, beVX 2018 and HITBSecConf 2017)

Banshee ⭐ 105

Experimental Windows x64 Kernel Driver/Rootkit.

Ebpfkit Monitor ⭐ 87

ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits

Scdetective ⭐ 73

A kernel level anti-rootkit tool which runs on the windows platform.

Lkm Rootkit ⭐ 72

A LKM rootkit for most newer kernel versions.

Linux v4.x.x Rootkit

Shadow Box For Arm ⭐ 57

Shadow-Box: Lightweight and Practical Kernel Protector for ARM (Presented at BlackHat Asia 2018)

A kernel rootkit with remote command and control interface for windows

Zhuhuibeishadiaoark ⭐ 55

个人所谓的ARK

Linux Rootkit Scanner

Rootkits List Download ⭐ 52

A curated list of rootkits found on Github and other sites.

Cdriver_loader ⭐ 40

Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.

Ntsymbol ⭐ 39

Resolve DOS MZ executable symbols at runtime

Linux Rootkits Red Blue Teams ⭐ 37

Linux Rootkits (4.x Kernel)

Superhide ⭐ 37

Example of hooking a linux systemcall

Linux Rootkits ⭐ 37

A collection of Linux kernel rootkits found across the internet taken and put together

A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malware and more.

Linux rootkit and detection examples

A linux rootkit works on kernel 4.0.X or higher

An educational Linux Kernel Rootkit

Zerobank Ring0 Bundle ⭐ 25

Kernel-Mode rootkit that connects to a remote server to send & recv commands

Cse509 Rootkit ⭐ 23

After attackers manage to gain access to a remote (or local) machine and elevate their privileges to "root", they typically want to maintain their access, while hiding their presence from the normal users and administrators of the system. This basic rootkit works on the Linux operating system and is a loadable kernel module which when loaded into the kernel (by the attacker with root privileges) will do the following: 1) Hide specific files and directories from showing up when a user does "ls"

Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes

Drvtricks ⭐ 20

drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.

Diagnostic_service ⭐ 18

OS X rootkit loader version #1

Random number rootkit for the Linux kernel

Linux rootkit experimentations

Hidedriver ⭐ 12

Using DKOM to hide kernel mode drivers

Freebsd Rootkit ⭐ 12

Diagnostic_service2 ⭐ 12

OS X rootkit loader version #2

64-bit LKM Rootkit builder based on yaml prescription. Working on 5.15.5 kernel

A syscall hooking system for FreeBSD, NetBSD and also Linux.

Simple Rootkit ⭐ 9

A simple attack against gcc and Python via kernel module, with highly detailed comments.

Data-Only Rootkit Framework

Rootkit_for_linux_kernel_5 ⭐ 8

Пример руткита для ядра линукс 5

Advanced threat detection solution for Linux.

Reversesh3ll_as_r00tkit ⭐ 7

An example kernel module rootkit to get reverse shell

Lkm Rootkit ⭐ 7

A rootkit implemented as a linux kernel module

Kprochide ⭐ 7

kprochide is an LKM for hiding processes from the userland. The module is able to hide multiple processes and is able to dynamically receive new processes to hide.

Kernelsu_action_template ⭐ 6

Plus Edition of KernelSU_Action. Use Github Action to build kernels with KernelSU. Supports all kernel versions theoretically.

Thesubzeroproject ⭐ 6

A multi-staged malware that contains a kernel mode rootkit and a remote system shell.

A FreeBSD kernel rootkit.

Bassethound ⭐ 6

A Linux kernel module and userland utility pair to detect processes hidden by Linux kernel module (LKM) rootkits.

Simple_rootkit ⭐ 6

A simple LKM kernel space rootkit for v5.x linux with multiple functions.

Troyhorse ⭐ 5

Rkspotter ⭐ 5

Rootkit spotter - experimental Linux rootkit finder LKM

Related Searches

C Kernel (12,841)

Kernel Unix (6,775)

Python Kernel (1,566)

Shell Kernel (1,485)

Kernel Driver (1,433)

C Plus Plus Kernel (1,226)

Jupyter Notebook Kernel (622)

Kernel Operating System (574)

Kernel Qemu (524)

Kernel Arm (428)

1-60 of 60 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2025 Awesome Open Source. All rights reserved.