How to use/What do I compile/What changes have to be made/What changes can I make to have nidhogg run in the background while I have a reverse shell (or whatever) to interact with the rootkit on my main pc.

Idov31 / Nidhogg

Nidhogg is an all-in-one simple to use windows kernel rootkit.

https://idov31.github.io/posts/lord-of-the-ring0-p1

GNU General Public License v3.0

1.8k stars 267 forks source link

How to use/What do I compile/What changes have to be made/What changes can I make to have nidhogg run in the background while I have a reverse shell (or whatever) to interact with the rootkit on my main pc. #39

Closed PROMPTYLOL closed 8 months ago

PROMPTYLOL commented 10 months ago

How to use/What do I compile/What changes have to be made/What changes can I make to have nidhogg run in the background while I have a reverse shell (or whatever) to interact with the rootkit on my main pc.

PROMPTYLOL commented 10 months ago

And also can I use the example?

Idov31 commented 8 months ago

Hey, Nidhogg is a kernel driver, so it always runs in the background and does not interfere with other usermode applications.

If you mean the user mode part, the current client is running one command and exists, but you can use the existing API to integrate it into your program and run it however you like.

Compilation and usage are available in the README and in the wiki.

PROMPTYLOL commented 8 months ago

thanks! My account got flagged before so you weren't able to see the issues.