A no-reboot, in-memory Linux persistence PoC leveraging namespace joining, user-namespace elevation, and self‑deletion.
☆65Aug 6, 2025Updated 10 months ago
Alternatives and similar repositories for Linux-persistence
Users that are interested in Linux-persistence are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Surgical UNWIND_INFO preservation for sleep masking without call stack spoofing.☆55Mar 30, 2026Updated 2 months ago
- Released presentations of my talks + code that used during these talks☆15Sep 5, 2024Updated last year
- InfraGuard is a Command & Control Redirection Proxy and Manager which protects your Red Team Infrastructure against threat attribution☆157Jun 8, 2026Updated 3 weeks ago
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆48Aug 13, 2025Updated 10 months ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆228Mar 7, 2026Updated 3 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Helps defenders find their WSUS configurations in the wake of CVE-2025-59287☆46Oct 28, 2025Updated 8 months ago
- Using Chromium-based browsers as a proxy for C2 traffic.☆153Dec 6, 2025Updated 6 months ago
- Modular framework for automating triaging, malware analysis, and analyst workflows☆44May 2, 2025Updated last year
- Static-Code-Analysis-Helper helps you perform static code analysis.☆33Feb 20, 2026Updated 4 months ago
- Materials for CVE-2024-30052.☆12Oct 4, 2024Updated last year
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆35Dec 31, 2025Updated 5 months ago
- ETW forensic tool for Volatility3 plugin☆17Nov 15, 2024Updated last year
- A lightweight test harness designed to speed up shellcode development by providing an execution environment with integrated crash diagnos�…☆46Jan 15, 2026Updated 5 months ago
- A C and Go /proc/pid/maps cloak of invisibilty for shared object files☆23Nov 19, 2025Updated 7 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- This is a PAM Skeleton Key that can be used for persistence, lateral movement, and privilege escalation.☆53Apr 23, 2026Updated 2 months ago
- BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…☆95May 25, 2026Updated last month
- Indirect-Shellcode-Executor expoits the miss-configuration/vulnerability present on the API Windows method ReadProcessMemory discovered b…☆83Nov 15, 2025Updated 7 months ago
- Rust Weaponization for Red Team Engagements.☆12Nov 14, 2022Updated 3 years ago
- Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible i…☆66Apr 2, 2025Updated last year
- A proof‑of‑concept C2 framework that uses Server‑Sent Events (SSE) and the MCP protocol for agent registration, command dispatch, and res…☆35Apr 28, 2025Updated last year
- CVE-2025-50168 Exploit PoC — Pwn2Own Berlin 2025 - LPE(Windows 11) winning bug.☆143Nov 3, 2025Updated 7 months ago
- C++ tool and library for converting .bin files to shellcode in multiple output formats.☆33Aug 18, 2025Updated 10 months ago
- Vulnerabilities advisories and PoC☆23May 19, 2026Updated last month
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Generate an Alphabetical Polymorphic Shellcode☆140Aug 19, 2025Updated 10 months ago
- Extension Osint Sync☆57Nov 26, 2025Updated 7 months ago
- Stage 0☆170Dec 18, 2024Updated last year
- A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.☆67Feb 11, 2025Updated last year
- ☆28Mar 14, 2026Updated 3 months ago
- EDR & Antivirus Bypass to Gain Shell Access☆247Sep 30, 2024Updated last year
- Synthetic data for object detection and segmentation☆14Oct 5, 2023Updated 2 years ago
- ☆84Apr 8, 2026Updated 2 months ago
- This C# tool sprays for admin access over the entire domain☆90Dec 7, 2025Updated 6 months ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs☆341Feb 27, 2026Updated 4 months ago
- Prototype road engine from 1993. Finally morphed into Road Rash after getting the contract from Ocean via Gary Bracey☆17Sep 23, 2025Updated 9 months ago
- A TUI for Active Directory collection.☆144Mar 17, 2026Updated 3 months ago
- A simple bug bounty utility tool to remove uninteresting entries from a list of URLs.☆13Jul 22, 2024Updated last year
- KittyLoader is a highly evasive loader written in C / Assembly☆264Sep 22, 2025Updated 9 months ago
- Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform☆18Apr 17, 2024Updated 2 years ago
- Remote DLL Injection with Timer-based Shellcode Execution☆215Jul 18, 2025Updated 11 months ago