Awesome-Mirrors/awesome-linux-rootkits

mirror of https://github.com/milabs/awesome-linux-rootkits.git synced 2024-09-20 21:25:45 +00:00

Ilya V. Matveychikov 2970d01f8e

Update README.md

2018-06-30 23:14:49 +04:00

937 B

Raw Blame History

`awesome-linux-rootkits`

🔑 feature table

Environment:

Kernel/User mode (or mixed)

Core capabilities:

Persistency

Stealth capabilities:

System logs cleaning (filtering)

Hiding stuff capabilities:

Hiding of files and directories
Hiding of processes and process trees
Hiding of network connections and activity
Hiding of process accounting information (like CPU usage)

Additional functions:

Keylogger
Backdoor/shell

🙈 user mode rootkits 💩

https://github.com/mempodippy/vlany

Linux LD_PRELOAD rootkit (x86 and x86_64 architectures)

☝️

🙉 kernel mode rootkits ❤️

https://github.com/f0rb1dd3n/Reptile

Reptile is a LKM rootkit written for evil purposes that runs on Linux kernel 2.6.x/3.x/4.x

☝️ backdoor
https://github.com/QuokkaLight/rkduck

rkduck - Rootkit for Linux v4

☝️ keylogger backdoor