arm64_silent_syscall_hook
r77-rootkit
arm64_silent_syscall_hook | r77-rootkit | |
---|---|---|
1 | 1 | |
95 | 1,501 | |
- | - | |
0.0 | 5.6 | |
over 1 year ago | 14 days ago | |
C | C | |
- | BSD 2-clause "Simplified" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
arm64_silent_syscall_hook
r77-rootkit
-
$sxr-powershell.exe
It could be this rootkit: https://github.com/bytecode77/r77-rootkit
What are some alternatives?
capstone - Capstone disassembly/disassembler framework: Core (Arm, Arm64, BPF, EVM, M68K, M680X, MOS65xx, Mips, PPC, RISCV, Sparc, SystemZ, TMS320C64x, Web Assembly, X86, X86_64, XCore) + bindings. [Moved to: https://github.com/capstone-engine/capstone]
TitanHide - Hiding kernel-driver for x86/x64.
WSAAcceptBackdoor - Winsock accept() Backdoor Implant.
Diamorphine - LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
Stuxnet-Source - stuxnet Source & Binaries. (+PLC ROOTKIT) ONLY FOR ACADEMICAL RESEARCH AND EDUCATIONAL PURPOSES! Includes: Source files, Binaries, PLC Samples,Fanny Added in another repo.
ebpfkit - ebpfkit is a rootkit powered by eBPF
ebpfkit-monitor - ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
TripleCross - A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.