## https://sploitus.com/exploit?id=FF818860-14A3-5A71-B501-E602E27A126A
This is a Linux rootkit and backdoor built using eBPF (Extended Berkeley Packet Filter). The tool is called "boopkit" and is designed to establish a reverse TCP connection from a remote server to a local machine. The tool has several options, including:
`-lhost` and `-lport` to specify the local host and port to listen on
`-rhost` and `-rport` to specify the remote host and port to connect to
`-9` to kill the boopkit malware on a server
The tool uses TCP to establish the connection and requires a client host and port to be set in order to create a proper TCP connection. If no client host and port are set, the tool defaults to a local host and port.
The tool is designed to be used for malicious purposes, such as establishing a backdoor on a system or stealing sensitive information. It is not intended for legitimate use and should not be used without proper authorization.
The tool has several dependencies, including the `ebpf` library, and uses several functions from the `arpa/inet.h`, `netinet/ip.h`, and `netinet/tcp.h` headers.
The tool has several potential vulnerabilities, including:
Buffer overflow vulnerabilities in the `csum`