# Kernel Pack **What is Kernel Pack?** Kernel Pack is an advanced post-exploitation framework designed for Ring 0, kernel exploitation. It lets you configure, interact with, set up, and deploy your custom rootkits. It offers Red Teams and Penetration Testers a controlled way to interact with low-level threats that typically stay hidden from view. By simulating these types of attacks, you can: * Learn and check how rootkits operate at the kernel level * Test the defences of systems and detection mechanisms * Improve your ability to recognise rootkit behaviour in real-world environments The interface is intuitive and user-friendly, making learning by doing the most effective approach. By following this manual, you will learn the basics of Kernel Pack. Join our [Discord community](https://discord.com/invite/eXVAQag) to connect with the developers and other users along the way. To master the advanced features of Kernel Pack, you'll need further learning and experience. We suggest setting up a lab environment to first explore the tool. This hands-on practice will help you fully utilise all the capabilities Kernel Pack offers. {% embed url="" %} {% hint style="danger" %} **Disclaimer:** Kernel Pack is a security testing software. It contains functionalities that could potentially damage or result in unexpected behaviour in some applications. Kernel Pack should only be used against non-production environments. Please read all documentation before using Kernel Pack, and do NOT use Kernel Pack against any systems for which you are not authorised by the system owner. {% endhint %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://exploit-pack.gitbook.io/exploit-pack-manual-pages/kernel-pack.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.