linux-rootkits
linux-rootkits copied to clipboard
nisay759
My little precious collection of Linux 4.x kernel rootkits
Nfhook and Fhide Fhide: use inputs (trough lkm arguments when loading the module) nfhook: I was unable to compile it, so I changed 1 line.
Now it can take kernel path and the prefix as arguments when loading the module. E.g $ insmod fhide.ko prefix="_HideThoseFiles_" kpath="/home/user/" # will hide files with the prefix "_HideThoseFiles_" ;...
I changed it 2 times; 1 time I accidentally added 2x of 2 or more code (more than needed), I am new to GitHub, This is my first pull request;...
## Hi @nisay759 I made some changes to your rootkits, which will allow input of file or dir names, to be hidden, the path to operate in, and the pid...