rootkits

There are 3 repositories under rootkits topic.

• d30sa1 / RootKits-List-Download

  This is the list of all rootkits found so far on github and other sites.

  offensive-scriptsredteamrootkitrootkits
  1220

• tkmru / awesome-linux-rootkits

  a summary of linux rootkits published on GitHub

  rootkitlinuxrootkitsawesome-list
  159

• MalwareSamples / Linux-Malware-Samples

  Linux Malware Sample Archive including various types of malicious ELF binaries and viruses. Be careful!

  elfelf-binarieslinuxmalwaremalware-samplesvirusesvirus-samplesmalware-samplelinux-viruself-virusmalware-researchrootkitsddosransomwarelinux-malware
  135

• kkent030315 / NtSymbol

  Resolve DOS MZ executable symbols at runtime

  windowskernelsymbolsymbolsntsymbolrootkitrootkits
  Language:C++ 94

• openclarity / vmclarity

  VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities

  cloudsecurityvulnerabilitiesvulnerability-scannersagentlessexploitsleaked-secretsmalwaremisconfigurationsrootkitssbomsecrets-detection
  Language:Go 86

• deeptechlabs / cyberweapons

  Automated Cyber Offense

  malwarepenetration-testingrootkitstrojanskeyloggercryptanalysisartificial-intelligencedeep-learning
  Language:C 83

• maldevel / RootKits-List-Download

  A curated list of rootkits found on Github and other sites.

  rootkitskernellinuxwindowscurated-list
  61

• therealdreg / lsrootkit

  Rootkit Detector for UNIX

  linuxunixforensicsforensic-analysisrootkitrootkitsantirootkit
  Language:C 59

• nopn0p / rkorova

  ld_preload userland rootkit

  rootkitsmalwareldpreloadlibraryhide-filesrootkitld-preloadptraceld-preload-rootkitlinuxlibc
  Language:C 34

• compilepeace / EVIL_RABBIT

  -x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.

  rootkitsbackdoormalware-researchld-preloadbind-shelluser-mode-rootkitlinux-malwarecode-flow-hijackcode-injectionmemory-injectionsystem-programmingevil-rabbit
  Language:C 26

• 0xd3xt3r / awesome-windows-rootkits

  Collection of windows rootkits

  malware-analysismalware-researchmalwaremalware-samplerootkitswindows-rootkits
  23

• loneicewolf / EXEC_LKM

  A LKM (Loadable Kernel Module) to execute a command as root; I include a example of using netcat and a compiled(with source and steps on how to compile) reverse shell provided in C.

  rootkitrootkitsmalwarevenomrootkitloneicewolfbootkitlkmlkm-rootkitlinux
  Language:C 13
• cerez

  ngn13 / cerez

  Cerez 😈 userland LD_PRELOAD rootkit

  ld-preloadld-preload-rootkitlinux-rootkitrootkitrootkit-developmentrootkit-kernelrootkits
  Language:C 13
• rkbreaker

  linuxthor / rkbreaker

  Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes

  anti-rootkitmalware-detectionmalware-researchrootkitrootkit-hunterrootkits
  Language:C 11

• raynecafaro / BassetHound

  A Linux kernel module and userland utility pair to detect processes hidden by Linux kernel module (LKM) rootkits.

  linux-kernellinuxrootkit-hunterrootkits
  Language:Python 8

• bluedragonsecurity / bds_userland

  Linux userland rootkit. Hides file and directory, hides process, hides bind shell port, hides daemon port, hides reverse shell port, cleans up bash history and logs during installation

  linux-rootkitrootkitrootkitsuserlanduserspacelinux-userland-rootkitlinux-userspace-rootkituserland-rootkituserspace-rootkit
  Language:C 7

• bluedragonsecurity / bds_lkm

  Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x and 6.x on x86_64, hides files, hides process, hides bind shell & reverse shell port, privilege escalation, cleans up logs and bash history during installation

  linuxlinux-kernellkmlkm-rootkitrootkitrootkitslinux-kernel-rootkitlinux-lkmlinux-rootkitlinux-lkm-rootkitkernel-rootkit
  Language:C 6

• assarbad / Nidhogg

  Nidhogg is an all-in-one simple to use rootkit for red teams.

  kernel-driverrootkitrootkit-windowsrootkitswindows-driverwindows-internalscyber-securitycybersecurityinfosecred-teamredteamwindows-rootkits
  Language:C++ 4

• Auto-Rooter / Windows-Drivers-Programming

  Windows Kernel Drivers Project

  windowsoskernel-driverapirootkits
  Language:C++ 3

• fstab50 / RKinstaller

  Installer for Rkhunter - A rootkit scanner for Linux

  linuxrootkitsrootkit-hunterinstallerubuntu1604ubuntu1404redhat7security-toolssecurity-audit
  Language:Shell 3

• 0xF41 / inodeyou-c

  Experimental program that detects files & directories hidden by Linux trojan/rootkits

  rootkitsinodesmalware-detectionmalwaretsk
  Language:C 2

• yanmarques / this-is-not-a-rootkit-nginx-persistence

  An Nginx module for persistent privileged malware

  cmalware-researchnginxnginx-modulerootkitssecurity-hardeningsecurity-scan
  Language:C 2

• romanmatviy / minakb.com

  Міністерство Акамуляторів minakb.com

  backend-developerfullstack-developerlaravel-engeenerprestashop-fullstack-developerdeveloper-hirerootkitsprestashop-developer
  Language:PHP