The Linux Kernel Module Programming Guide (updated for 5.0+ kernels)
-
Updated
May 25, 2024 - TeX
The Linux Kernel Module Programming Guide (updated for 5.0+ kernels)
An example rootkit that gives a userland process root permissions
A quick LKM rootkit that executes a reverse TCP netcat shell with root privileges.
Utility to find hidden Linux kernel modules
Virtual Linux block device driver for simulating and performing I/O.
Rust out-of-tree Linux Kernel Modules (LKMs) experimentation framework
Tools to bypass flawed SELinux policies using the init_module system call
A LKM (Loadable Kernel Module) to execute a command as root; I include a example of using netcat and a compiled(with source and steps on how to compile) reverse shell provided in C.
Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x and 6.x on x86_64, hides files, hides process, hides bind shell & reverse shell port, privilege escalation, cleans up logs and bash history during installation
Linux kernel programming using loadable kernel modules (LKMs)
Ftrace Based Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x and 6.x on x86_64, hides files, hides process, hides bind shell & reverse shell port, privilege escalation, cleans up logs and bash history during installation
Examples on Linux Kernel Modules Hacking
64-bit LKM Rootkit builder based on yaml prescription. Working on 5.15.5 kernel
First Linux Character Device Driver
kfile-over-icmp is an LKM for stealth sending of files over ICMP communication.
ASP: Assignment 5 - Basic Character Device Driver
Add a description, image, and links to the lkm topic page so that developers can more easily learn about it.
To associate your repository with the lkm topic, visit your repo's landing page and select "manage topics."