A curated compilation of extensive resources dedicated to bootkit and rootkit development.
A ring0 Loadable Kernel Module (Linux) for latest kernels 6.x
Windows Kernel Rootkit
Ftrace Based Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x up to linux kernel 6.2 on x86_64, hides files, hides process, hides bind shell & reverse shell port, privilege escalation, cleans up logs and bash history during installation
Kernel-space x86_64 Linux rootkit leveraging kprobes and ftrace for syscall hooking (hiding entries and reverse shell backdoor)
Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x up to linux kernel 6.2 on x86_64, hides files, hides process, hides bind shell & reverse shell port, privilege escalation, cleans up logs and bash history during installation
Starter pack for learning how to develop Kernel-Mode rootkits: basic proof-of-concepts, development environment configuration, and step-by-step resources to begin coding low-level rootkit components from scratch.
Rootkit for Windows 32-bit
Add a description, image, and links to the kernel-rootkit topic page so that developers can more easily learn about it.
To associate your repository with the kernel-rootkit topic, visit your repo's landing page and select "manage topics."