vlany - Linux LD_PRELOAD rootkit (x86 & x86_64) - open-source 11-05-2016, 07:22 PM
#1
https://github.com/mempodippy/vlany
Features:
There's currently one significant bug and one minor bug, both of which are listed in the repo's README.md.
The original, in-depth README contains details on features, journal entries, bugs and solution to bugs, and more. But this README isn't really maintained anymore.
There's a quick install script available which clones the current build of vlany in the repo and installs it.
The main installation script in the repository itself however allows for a tui or cli installation.
Feedback, criticism, and any potential issues are always welcome.
Features:
- Process hiding
- User hiding
- Network hiding
- LXC container
- Anti-Debug
- Anti-Forensics
- Persistent (re)installation & Anti-Detection
- Dynamic linker modifications
Backdoors
- accept() backdoor (derived from Jynx2)
- PAM backdoor
- PAM auth logger
- PAM auth logger
- vlany-exclusive commands
There's currently one significant bug and one minor bug, both of which are listed in the repo's README.md.
The original, in-depth README contains details on features, journal entries, bugs and solution to bugs, and more. But this README isn't really maintained anymore.
There's a quick install script available which clones the current build of vlany in the repo and installs it.
The main installation script in the repository itself however allows for a tui or cli installation.
Feedback, criticism, and any potential issues are always welcome.
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)