Skip to content

Diamorphine

Jump to bottom
linuxthor edited this page Sep 30, 2020 · 14 revisions

Introduction
Features
Community
Install process
Architecture
Notes
Conclusion

Introduction

Diamorphine by m0nad (Victor Ramos Mello) is a Linux LKM based rootkit with broad version compatibility (2.6.* to 5.*)

Features

Diamorphine advertises the following set of capabilities:

Community

Diamorphine has an active bug tracker/support system on it's Github project page and the lead developer m0nad appears quick to respond.

Home
Techniques
LKM
--> kallsyms
--> Module Hiding
--> cr0 modification
--> sys_call_table patching
--> Chain loading
--> Function hooking
--> Hidden network traffic
--> binfmt handler

Rootkits
LKM
--> Reptile LKM
--> Diamorphine LKM
--> lilyofthevalley LKM
--> puszek-rootkit LKM
--> rkduck LKM
--> Suterusu LKM
--> Sutekh LKM
LD_PRELOAD
--> Beurk LD_PRELOAD
--> Jynx2 LD_PRELOAD

Clone this wiki locally