Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/QuokkaLight/rkduck
Linux v4.x.x Rootkit
https://github.com/QuokkaLight/rkduck
kernel kernel-module keylogger linux rootkit stealth
Last synced: about 1 month ago
JSON representation
Linux v4.x.x Rootkit
- Host: GitHub
- URL: https://github.com/QuokkaLight/rkduck
- Owner: QuokkaLight
- Created: 2016-01-19T19:22:31.000Z (almost 9 years ago)
- Default Branch: master
- Last Pushed: 2024-07-27T10:47:12.000Z (5 months ago)
- Last Synced: 2024-08-04T01:02:00.797Z (5 months ago)
- Topics: kernel, kernel-module, keylogger, linux, rootkit, stealth
- Language: C
- Homepage:
- Size: 167 KB
- Stars: 86
- Watchers: 8
- Forks: 34
- Open Issues: 11
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# rkduck - Rootkit for Linux v4 [](https://travis-ci.org/QuokkaLight/rkduck)
**rkduck** is a Loadable Kernel Module rootkit for the latest Linux Kernels v4. This is still a work in progress.
## Features
* **Stealth**
* Hide files, directories, processes
* **Communication**
* SSH
* Direct shell (unencrypted)
* Reverse shell (unencrypted)
* **Keylogger**
* Recording of the keystrokes of every user.
* Information sent periodically
* **Crumbs**
* A user space CLI program allowing the user to control the rootkit configuration during its execution
* Requires an authentication to be used (hardcoded key stored in rduck, the configuration section has more information about it)
## Tests
At the moment we didn't get the chance to test our rootkit on different versions of Linux to make sure everything is working as intended. If you want to report a bug feel free to create an issue or send us an email at .
## Contributors
* **mpgn** - [Twitter](http://twitter.com/mpgn_x64)
* **RainbowLyte** - [Twitter](http://twitter.com/Rainbowlyte)
_.._
/ a\__,
\ -.___/
\ \
(\____) \
|\_( ))
_____| (_ /________
_\____(______/__
______