Statistics for topic rootkit

RepositoryStats tracks 638,261 Github repositories, of these 94 are tagged with the rootkit topic. The most common primary language for repositories using this topic is C (40). Other languages include: C++ (19)

Stargazers over time for topic rootkit

8080707060605050404030302020101000202020202021202120222022202320232024202420252025

Most starred repositories for topic rootkit (view more)

mrexodia
TitanHide mrexodia
431
2.3k
mit
80
Hiding kernel-driver for x86/x64.
driver rootkit windows hacktoberfest anti-debugging
Created 2016-10-21
225 commits to master branch, last one about a month ago
ExpLife0011
awesome-windows-kernel-security-development ExpLife0011
540
2.0k
unknown
132
windows kernel security development
driver bootkit rootkit antivirus framework shellcode antirootkit
Created 2018-03-19
986 commits to master branch, last one 3 years ago
m0nad
Diamorphine m0nad
449
2.0k
other
55
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
c linux kernel hacking malware pentest redteam rootkit stealth backdoor security pentesting redteaming lkm-rootkit hacking-tool linux-kernel kernel-module security-audit security-tools advanced-persistent-threat
Created 2013-11-06
50 commits to master branch, last one about a year ago
Idov31
Nidhogg Idov31
283
1.9k
gpl-3.0
36
Nidhogg is an all-in-one simple to use windows kernel rootkit.
cpp driver kernel infosec redteam rootkit windows red-team cybersecurity cyber-security windows-rootkits
Created 2022-05-29
201 commits to master branch, last one 24 days ago
JKornev
hidden JKornev
495
1.9k
unknown
67
🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
rce driver kernel rootkit windows registry security malware-analysis
Created 2016-06-16
138 commits to master branch, last one 2 years ago
xl7dev
WebShell xl7dev
1.0k
1.9k
gpl-2.0
59
Webshell && Backdoor Collection
shell rootkit backdoor webshell
Created 2015-10-16
25 commits to master branch, last one 8 years ago

Trending repositories for topic rootkit (view more)

Last 3 days (new repositories)
no newly created repositories trending in the last 3 days
Last 3 days (absolute gain)
joaoviictorti
joaoviictorti/shadow-rs

Windows Kernel Rootkit in Rust

541 (+6)
mit
mrexodia
mrexodia/TitanHide

Hiding kernel-driver for x86/x64.

2,259 (+6)
mit
Idov31
Idov31/Nidhogg

Nidhogg is an all-in-one simple to use windows kernel rootkit.

1,932 (+5)
gpl-3.0
milabs
milabs/awesome-linux-rootkits

awesome-linux-rootkits

1,814 (+4)
cc0-1.0
bytecode77
bytecode77/r77-rootkit

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

1,877 (+4)
bsd-2-clause
Last 3 days (relative gain)
MatheuZSecurity
MatheuZSecurity/UnhookingLinuxEdr

Attacking the cleanup_module function of a kernel module

29 (+4%)
mit
joaoviictorti
joaoviictorti/shadow-rs

Windows Kernel Rootkit in Rust

541 (+1%)
mit
mrexodia
mrexodia/TitanHide

Hiding kernel-driver for x86/x64.

2,259 (+0.3%)
mit
milabs
milabs/awesome-linux-rootkits

awesome-linux-rootkits

1,814 (+0.2%)
cc0-1.0
bytecode77
bytecode77/r77-rootkit

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

1,877 (+0.2%)
bsd-2-clause
Last week (new repositories)
no newly created repositories trending in the last week
Last week (absolute gain)
bytecode77
bytecode77/r77-rootkit

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

1,877 (+12)
bsd-2-clause
m0nad
m0nad/Diamorphine

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)

1,976 (+12)
Idov31
Idov31/Nidhogg

Nidhogg is an all-in-one simple to use windows kernel rootkit.

1,932 (+11)
gpl-3.0
mrexodia
mrexodia/TitanHide

Hiding kernel-driver for x86/x64.

2,259 (+9)
mit
milabs
milabs/awesome-linux-rootkits

awesome-linux-rootkits

1,814 (+7)
cc0-1.0
Last week (relative gain)
MatheuZSecurity
MatheuZSecurity/UnhookingLinuxEdr

Attacking the cleanup_module function of a kernel module

29 (+12%)
mit
MasonGroup
MasonGroup/BuilderMasonRootkit

Masonrookit is a tool that makes your malware hidden from the process, from the task manager, all device paths and hides the connection

42 (+5%)
ldpreload
ldpreload/Medusa

LD_PRELOAD Rootkit

220 (+2%)
joaoviictorti
joaoviictorti/shadow-rs

Windows Kernel Rootkit in Rust

541 (+1%)
mit
cr0nx
cr0nx/awesome-linux-attack-forensics-purplelabs

This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.

282 (+0.7%)
gpl-3.0
Last month (new repositories)
MatheuZSecurity
MatheuZSecurity/UnhookingLinuxEdr

Attacking the cleanup_module function of a kernel module

29
mit
Last month (absolute gain)
bytecode77
bytecode77/r77-rootkit

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

1,877 (+114)
bsd-2-clause
joaoviictorti
joaoviictorti/shadow-rs

Windows Kernel Rootkit in Rust

541 (+72)
mit
mrexodia
mrexodia/TitanHide

Hiding kernel-driver for x86/x64.

2,259 (+45)
mit
Idov31
Idov31/Nidhogg

Nidhogg is an all-in-one simple to use windows kernel rootkit.

1,932 (+41)
gpl-3.0
m0nad
m0nad/Diamorphine

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)

1,976 (+36)
Last month (relative gain)
MatheuZSecurity
MatheuZSecurity/UnhookingLinuxEdr

Attacking the cleanup_module function of a kernel module

29 (+625%)
mit
joaoviictorti
joaoviictorti/shadow-rs

Windows Kernel Rootkit in Rust

541 (+15%)
mit
grisuno
grisuno/LazyOwn

LazyOwn RedTeam/APT Framework is the first RedTeam Framework with an AI-powered C&C, featuring rootkits to conceal campaigns, undetectable malleable implants compatible with Windows/Linux/Mac OSX, and...

49 (+14%)
gpl-3.0
0xbitx
0xbitx/DEDSEC_BOTNET

Linux-based botnet builder designed for creating advanced botnet payloads.

76 (+12%)
mit
MasonGroup
MasonGroup/BuilderMasonRootkit

Masonrookit is a tool that makes your malware hidden from the process, from the task manager, all device paths and hides the connection

42 (+11%)
Last 12-months (new repositories)
joaoviictorti
joaoviictorti/shadow-rs

Windows Kernel Rootkit in Rust

541
mit
DualHorizon
DualHorizon/blackpill

A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs

279
gpl-3.0
MatheuZSecurity
MatheuZSecurity/Rootkit

Collection of codes focused on Linux rootkits

101
mit
xsh3llsh0ck
xsh3llsh0ck/Deadwing

SMM driver/rootkit for platform memory access with R3 <-> R0 <-> R-2 communication.

85
gpl-3.0
0xbitx
0xbitx/DEDSEC_BOTNET

Linux-based botnet builder designed for creating advanced botnet payloads.

76
mit
Last 12-months (absolute gain)
joaoviictorti
joaoviictorti/shadow-rs

Windows Kernel Rootkit in Rust

541 (+535)
mit
bytecode77
bytecode77/r77-rootkit

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

1,877 (+415)
bsd-2-clause
Idov31
Idov31/Nidhogg

Nidhogg is an all-in-one simple to use windows kernel rootkit.

1,932 (+340)
gpl-3.0
jm33-m0
jm33-m0/emp3r0r

Linux/Windows post-exploitation framework made by linux user

1,525 (+335)
mit
m0nad
m0nad/Diamorphine

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)

1,976 (+334)
Last 12-months (relative gain)
joaoviictorti
joaoviictorti/shadow-rs

Windows Kernel Rootkit in Rust

541 (+8,917%)
mit
MatheuZSecurity
MatheuZSecurity/ModTracer

ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.

73 (+1,360%)
mit
ngn13
ngn13/shrk

LKM rootkit for modern kernels, with DNS C2 and a simple web interface

65 (+1,200%)
gpl-3.0
MatheuZSecurity
MatheuZSecurity/detect-lkm-rootkit-cheatsheet

Cheat sheet to detect and remove linux kernel rootkit

55 (+817%)
0xbitx
0xbitx/DEDSEC_BOTNET

Linux-based botnet builder designed for creating advanced botnet payloads.

76 (+660%)
mit