Release

This release consists version 1.0.0 of PANIX, a Linux persistence tool. The current release has the following functions built-in:

Feature	Description	Root	User
At Job Persistence	At job persistence	✓	✓
Authorized Keys Management	Add public key to authorized keys	✓	✓
Backdoor User	Create backdoor user with uid=0	✓	✗
Bind Shell	Execute backgrounded bind shell	✓	✓
Capabilities Backdoor	Add capabilities for persistence	✓	✗
Cron Job Persistence	Cron job persistence	✓	✓
Create User	Create a new user	✓	✗
Git Persistence	Git hook/pager persistence	✓	✓
Generator Persistence	Systemd generator persistence	✓	✗
Init.d Backdoor	SysV Init (init.d) persistence	✓	✗
Malicious Package Backdoor	DPKG/RPM package persistence	✓	✗
Docker Container Backdoor	Docker container with host escape	✓	✓
MOTD Backdoor	Message Of The Day (MOTD) persistence	✓	✗
Package Manager Persistence	Package Manager persistence (APT/YUM/DNF)	✓	✗
/etc/passwd Modification	Add user to /etc/passwd directly	✓	✗
Password Change	Change user password	✓	✗
RC.local Backdoor	Run Control (rc.local) persistence	✓	✗
Shell Profile Persistence	Shell profile persistence	✓	✓
SSH Key Persistence	SSH key persistence	✓	✓
Sudoers Backdoor	Sudoers persistence	✓	✗
SUID Backdoor	SUID persistence	✓	✗
System Binary Backdoor	System binary wrapping for persistence	✓	✗
Systemd Service Persistence	Systemd service persistence	✓	✓
Udev Persistence	Udev (driver) persistence	✓	✗
XDG Autostart Persistence	XDG autostart persistence	✓	✓

Support

Support for this release consists of, but is not limited to the following distributions:

Distribution	Support	Tested
Debian	✓	Fully tested on Debian 11 & 12
Ubuntu	✓	Fully tested on Ubuntu 22.04
RHEL	✓	Fully tested on RHEL 9 (MOTD unavailable)
CentOS	✓	Fully tested on CentOS Stream 9, 7 (MOTD unavailable)
Fedora	✓	Not fully tested
Arch Linux	✓	Not fully tested
OpenSUSE	✓	Not fully tested