Reptile LKM Rootkit

[Fi8sVrs]

 

Reptile is a Linux kernel module rootkit that hides files, processes, etc. It implements ICMP/UDP/TCP port-knocking backdoors, supports kernels 2.6.x/3.x/4.x, and more.

 

Features

• Give root to unprivileged users
•  Hide files and directories
•  Hide files contents
•  Hide processes
•  Hide himself
•  Hidden boot persistence
•  Strings obfuscation. Method suggested by: [milabs](https://github.com/milabs)
•  ICMP/UDP/TCP port-knocking backdoor
•  Full TTY/PTY shell with file transfer
•  Client to handle Reptile Shell
•  Shell connect back each X times (not default)

 

Content:

Reptile-master\installer.sh
Reptile-master\Makefile
Reptile-master\README.md
Reptile-master\rep_mod.c
Reptile-master\sbin
Reptile-master\sbin\aes.c
Reptile-master\sbin\aes.h
Reptile-master\sbin\client.c
Reptile-master\sbin\Makefile
Reptile-master\sbin\pel.c
Reptile-master\sbin\pel.h
Reptile-master\sbin\r00t.c
Reptile-master\sbin\README.md
Reptile-master\sbin\sha1.c
Reptile-master\sbin\sha1.h
Reptile-master\sbin\shell.c
Reptile-master\scripts
Reptile-master\scripts\bashrc

Download: Reptile-master.zip (33.8 KB)

 

Source

Edited May 31, 2018 by OKQL