• Stars
    star
    1,595
  • Rank 29,332 (Top 0.6 %)
  • Language
  • License
    Creative Commons ...
  • Created over 6 years ago
  • Updated almost 2 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

awesome-linux-rootkits

awesome-linux-rootkits Awesome

🔑 feature table

Environment:

  • CPU architecture
  • Kernel/User mode (or mixed)

Core capabilities:

  • Persistency
  • Management interface
  • Altering system (library) behavior

Stealth capabilities:

  • Detection evasion
  • System logs cleaning (filtering)

Hiding stuff capabilities:

  • Hiding of files and directories
  • Hiding (tampering) of file contents
  • Hiding of processes and process trees
  • Hiding of network connections and activity
  • Hiding of process accounting information (like CPU usage)

Additional functions:

  • Keylogger
  • Backdoor/shell
  • Gaining priveleges

🙈 user mode rootkits

🙉 kernel mode rootkits

Linux 4.18+ rootkit with multiple reverse backdoors, task management, CPU usage hiding, stealth techniques, ELF infection and evasion from anti-rooktiks based on eBPF.

🙊 related stuff

Contributing

Please refer the guidelines at contributing.md for details