/adore-ng

linux rootkit adapted for 2.6 and 3.x

Primary LanguageCGNU General Public License v2.0GPL-2.0

  ▄▄▄      ▓█████▄  ▒█████   ██▀███  ▓█████        ███▄    █   ▄████ 
  ▒████▄    ▒██▀ ██▌▒██▒  ██▒▓██ ▒ ██▒▓█   ▀        ██ ▀█   █  ██▒ ▀█▒ 
  ▒██  ▀█▄  ░██   █▌▒██░  ██▒▓██ ░▄█ ▒▒███    ███  ▓██  ▀█ ██▒▒██░▄▄▄░ 
  ░██▄▄▄▄██ ░▓█▄   ▌▒██   ██░▒██▀▀█▄  ▒▓█  ▄  ▒▒▒  ▓██▒  ▐▌██▒░▓█  ██▓ 
   ▓█   ▓██▒░▒████▓ ░ ████▓▒░░██▓ ▒██▒░▒████▒      ▒██░   ▓██░░▒▓███▀▒ 
    ▒▒   ▓▒█░ ▒▒▓  ▒ ░ ▒░▒░▒░ ░ ▒▓ ░▒▓░░░ ▒░ ░      ░ ▒░   ▒ ▒  ░▒   ▒ 
      ▒   ▒▒ ░ ░ ▒  ▒   ░ ▒ ▒░   ░▒ ░ ▒░ ░ ░  ░      ░ ░░   ░ ▒░  ░   ░ 
 	   ░   ▒    ░ ░  ░ ░ ░ ░ ▒    ░░   ░    ░            ░   ░ ░ ░ ░   ░ 
 	         ░  ░   ░        ░ ░     ░        ░  ░               ░       ░ 
 			            ░                                                       
                              Adore-ng v2.0

Adore-NG v2.0

Adore-ng v2.0 is a linux rootkit adapted for 2.6, 3.x, 4.x. This rootkit was upgraded for Shadow-box test.

Shadow-box is a lightweight hypervisor-based kernel protector. Shadow-box was introduced at Black Hat Asia 2017, Black Hat Asia Arsenal 2017, and HITBSecConf 2017.

Shadow-box is at GitHub below. Project Link: https://github.com/kkamagui/shadow-box-for-x86