jess LAND
       www.jessland.net		        Sponsored by:       
One eSecurity
www.one-esecurity.com
JISK Knowledgebase >>    About    News    Essentials    Architecture    FWs    IDS/IPS    Honeypots    Malware    Forensics   
  +  JSS Home    Projects    JSS Community    Events    News    Docs    About    Contact .

JISK > Malware > Rootkits > Types > Kernel > OS > Linux Malware Section Map

Linux Kernel Rootkits

  • aasniff:Anti Anti Sniffer Patch.
  • all-root: A kernel trojan (basic linux kernel module) which gives all users root.
  • adore-0.31: Adore is a linux LKM based rootkit.
  • adore-0.34: Adore is a linux LKM based rootkit for Linux v2.24.
  • adore-0.38: Linux LKM based rootkit for Linux v2.24.
  • adore-0.39b4: Linux LKM based rootkit for Linux v2.24.
  • adore-0.42: Linux LKM based rootkit for Linux v2.24.
  • phalanx-b6: Self-injecting kernel rootkit designed for the Linux 2.6.
  • allinone:
  • enyelkm.en.v1.0: LKM rootkit for Linux x86 with the 2.6 kernel.
  • shtroj2: Auto-hiding back door kernel module for linux.
  • sk-1.3a: Easy-to-use, Linux-i386 kernel-based rootkit.
  • suckit2priv: Easy-to-use, Linux-i386 kernel-based rootkit.
  • Synapsys-lkm: LKM rootkit for Linux which features file hiding, process hiding, etc.
  • kbdv3: Linux loadable kernel module backdoor.
  • Rkit-1.01: Linux LKM backdoor/rootkit which intercepts the SYS_setuid call.
  • defuserootkit2: Updated version of a utility that removes LKM rootkits.
  • modhide1: New method of hiding kernel modules.
  • Phantasmagoria: Phantasmagoria hides tasks without modifying syscalls in Linux kernel v2.4.
  • phide: A lkm that hides processes under Linux 2.0.
  • pizzaicmp: ICMP-based triggered Linux kernel module.
  • Rial: Lkm based rootkit which can hide processes, files, directories, etc.

Copyright © 2000-2008 Jessland - Jess Garcia's Website - All rights reserved.