LKM Linux rootkit
翻译 - LKM Linux rootkit
The Linux Kernel Module Programming Guide (updated for 5.0+ kernels)
翻译 - Linux 内核模块编程指南(针对 5.x 内核更新)
Linux kernel module for RedPill
翻译 - RedPill 的 Linux 内核模块
Android Loadable Kernel Modules - mostly used for reversing and debugging on controlled systems/emulators
Trusted Path Execution (TPE) Linux Kernel Module
A speedy LookML parser & serializer implemented in pure Python.
A LKM rootkit for most newer kernel versions.
An LKM rootkit targeting Linux 2.6/3.x on x86(_64), and ARM
A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
翻译 - 适用于Linux Kernels 2.6.x / 3.x / 4.x(x86和x86_64)的LKM rootkit
Map uncached memory in userspace Linux kernel module
Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypass infamous rkhunter antirootkit.
Fork from http://redmine.poppopret.org/projects/suterusu. An LKM rootkit targeting Linux 2.6/3.x on x86 and ARM. Supports privilege escalation, process hiding, connection hiding (TCP/UDP v4/v6), file...
LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring...
翻译 - LiME(以前称为DMD)是可加载内核模块(LKM),它允许从Linux和基于Linux的设备(例如由Android驱动的设备)中获取易失性内存。该工具支持获取设备文件系统或网络上的内存。 LiME的独特之处在于它是第一个允许从Android设备捕获全部内存的工具。它还最大程度地减少了在获取过程中用户空间与内核空间过程之间的交互,这使其比在Linux内存获取中设计的其他工具所产生的内存捕获更具鉴识力。