I'm working on some new techniques for Linux Kernel Rootkit Detections as my thesis. I need some sample of rootkits to test my method and also do some machine learning tests. But not the old-dusty ones in packetstorm that could be found in computer history books as well. I've read alot about it and I've seen some new methods of rootkit implementations in phrack and some other resources. It would take a lot of time to just implement PoC rootkits out of them for me and I would just get to the starting point for my project by then.
If anyone could help me with this it would be greatly appreciated. Any site, ftp, compromised system, unknown rootkit libraries, anything that might be a sample for my work is appreciated. But with this in mind that what I need are Linux kernel Rootkits. Any type, LKM, System Call Hooking, Object hooking, system.map /dev/mem working stuff
Thanks
p.s by new rootkits I don't mean like non-reported or all-over-the-news rootkit, something that would work on ubuntu 10.04 or newer would be great (Kernel version 2.6.32+)