EXCLUSIVELY FOR EDUCATIONAL PURPOSES!
Good day, friends, I want to show you a not bad selection of Linux rootkit sources, made for different architectures, with a different set of functions (from hidden SSH to a full-fledged keylogger with a built-in IRC bot.)
For those who do not fumble at all:
A rootkit is a special kernel module that an attacker installs on a computer system that he has compromised immediately after gaining superuser (root) rights. Such kits, as a rule, include various utilities for "covering the traces" of intrusion into the system and make sniffers, scanners, Trojans and keyloggers invisible, replacing the main UNIX utilities (in the case of a non-nuclear rootkit). Rootkit allows a hacker to gain a foothold in a compromised system and hide traces of their activities by hiding files, processes, as well as the very presence of the rootkit in the system.
Link to this collection - https://github.com/milabs/awesome-linux-rootkits