Skip to content

ElliotAlderson51/Kernel-Rootkit-32Bit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
src
src
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Rootkit-32Bit

Introduction

Hey, after I read the books:
"Windows Kernel Programming" by Pavel Yosifovich
"The Rootkit Arsenal: Escape and Evasion in the Dark Corners of the System 2nd Edition"

I decide to create a Kernel Rootkit for 32-bit system.

Now I'll start learning how to create a Kernel Rootkit for 64-bit!

Enjoy.

What the Rootkit can do?

Hook the SSDT

✔️ Protect Files (Read\Write\Create\Delete\Rename\Open\Execute)
✔️ Hide Process
✔️ Protect Process, Thread
✔️ Protect Registry Keys (Open\Create\Delete\Set)
✔️ Bypass privilege checks

Links:

Windows Kernel Programming : https://www.amazon.com/Windows-Kernel-Programming-Pavel-Yosifovich/dp/1977593372
The Rootkit Arsenal 2nd Edition : https://www.amazon.com/Rootkit-Arsenal-Escape-Evasion-Corners/dp/144962636X

This project is for EDUCATIONAL PURPOSES ONLY. You are the only responsable for your actions!

About

Rootkit for Windows 32-bit

Topics

cpp rootkit malware windows-kernel malware-development kernel-development elliotalderson51 kernel-rootkit windows-kernel-hook rootkit-kernel windows-rootkit rootkit-windows windows-32-bit cpp-kernel-development

Resources

Readme

License

MIT license
Activity

Stars

5 stars

Watchers

3 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages