Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
awesome-linux-rootkits
a summary of linux rootkits published on GitHub
https://github.com/tkmru/awesome-linux-rootkits
Last synced: about 5 hours ago
JSON representation
-
Ramdisk rootkit
-
Rootkit checker
-
Materials
- Malware Memory Analysis of the Jynx2 Linux Rootkit (Part 1): Investigating a Publicly Available Linux Rootkit Using the Volatility Memory Analysis Framework
- SANS Institute: Rootkit Detection with OSSEC
- The Horse Pill Rootkit vs. Forcepoint Threat Protection for Linux | Forcepoint
- The magic of LD_PRELOAD for Userland Rootkits | FlUxIuS' Blog
- Linux Rootkit Internals - Speaker Deck
-
LD_PRELOAD rootkit
- mempodippy/vlany: Linux LD_PRELOAD rootkit (x86 and x86_64 architectures)
- chokepoint/azazel: Azazel is a userland rootkit based off of the original LD_PRELOAD technique from Jynx rootkit. It is more robust and has additional features, and focuses heavily around anti-debugging and anti-detection.
- chokepoint/jynxkit: JynxKit is an LD_PRELOAD userland rootkit for Linux systems with reverse connection SSL backdoor
- chokepoint/Jynx2: JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.
- ChristianPapathanasiou/apache-rootkit: A malicious Apache module with rootkit functionality
- unix-thrust/beurk: BEURK is an userland preload rootkit for GNU/Linux, heavily focused around anti-debugging and anti-detection.
-
Kernel Module rootkit
- mncoppola/suterusu: An LKM rootkit targeting Linux 2.6/3.x on x86(_64), and ARM
- m0nad/Diamorphine: LKM rootkit for Linux Kernels 2.6.x/3.x/4.x
- nurupo/rootkit: Linux rootkit for Ubuntu 16.04 and 10.04 (Linux Kernels 4.4.0 and 2.6.32), both i386 and amd64
- QuokkaLight/rkduck: Linux v4.x.x Rootkit
- trimpsyw/adore-ng: linux rootkit adapted for 2.6 and 3.x
Categories
Sub Categories
Keywords
rootkit
4
kernel-module
3
linux
3
c
2
stealth
2
kernel
2
tui
1
shared
1
reboot
1
preload
1
linker
1
libssl
1
library
1
libpcap
1
libpam
1
libdl
1
libc
1
ldpreload
1
dynamic
1
debian
1
cli
1
keylogger
1
linux-rootkit
1
linux-kernel-module
1
security-tools
1
security-audit
1
security
1
redteaming
1
redteam
1
pentesting
1
pentest
1
malware
1
lkm-rootkit
1
linux-kernel
1
hacking-tool
1
hacking
1
backdoor
1
advanced-persistent-threat
1
userland
1