spectre
Rootkit
A proof-of-concept Windows kernel-mode rootkit designed to demonstrate legitimate communication channel exploitation for remote control.
A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.
685 stars
23 watching
143 forks
Language: C++
last commit: over 4 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 eterna1/puszek-rootkit | A Linux rootkit that hooks the system call table to hide files and processes. | 157 |
 eversinc33/banshee | A Windows kernel rootkit with anti-rootkit evasion features and keylogging capabilities. | 502 |
 h3xduck/triplecross | A Linux rootkit demonstrating the offensive capabilities of eBPF technology using various techniques such as backdoors, C2 channels and code injection. | 1,796 |
 gui774ume/ebpfkit | A rootkit powered by eBPF designed to demonstrate offensive security techniques and bypass kernel protections. | 766 |
 mempodippy/vlany | A Linux rootkit designed to evade detection and maintain persistence on compromised systems | 947 |
 sannykim/solsec | A collection of resources to study Solana smart contract security, auditing, and exploits. | 624 |
 squiffy/masochist | A framework for creating XNU-based rootkits with capabilities such as process manipulation and system call hijacking. | 124 |
 beahunt3r/windows-hunting | A collection of tools and resources to aid Windows threat hunters in identifying common security artifacts. | 347 |
 nullarray/roothelper | A collection of scripts for aiding in privilege escalation on Linux systems | 485 |
 bats3c/shad0w | A post-exploitation toolset designed to operate covertly on heavily monitored environments. | 2,058 |
 yaoyumeng/adore-ng | A Linux rootkit adapted for 2.6 and 3.x kernel versions | 206 |
 tobysalusky/cont3xt | Centralizes and simplifies the gathering of contextual intelligence in support of technical investigations. | 36 |
 ionescu007/specucheck | Utility to inspect CPU and hardware mitigations against specific security vulnerabilities. | 568 |
 claudiouzelac/rootkit.com | A mirror of the users section of a notorious website | 289 |
 danielchronlund/dctoolbox | A PowerShell module for Microsoft 365 security tasks and management | 328 |