DavidBuchanan314 / monomorph

Related projects: ⓘ

• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆790Updated last year
• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,111Updated last week
• netspooky / xx
  The xx file format. Turn your hex dumps into art, then into binary data.
  ☆336Updated last year
• winterknife / PINKPANTHER
  Windows x64 handcrafted token stealing kernel-mode shellcode
  ☆502Updated 5 months ago
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆468Updated 2 months ago
• stong / how-to-exploit-a-double-free
  How to exploit a double free vulnerability in 2021. Use After Free for Dummies
  ☆1,313Updated 2 years ago
• JuliaPoo / Artfuscator
  A C compiler targeting an artistically pleasing nightmare for reverse engineers
  ☆994Updated last year
• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,751Updated 5 months ago
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,344Updated last year
• lrh2000 / StackRot
  CVE-2023-3269: Linux kernel privilege escalation vulnerability
  ☆461Updated last year
• googleprojectzero / 0days-in-the-wild
  Repository for information about 0-days exploited in-the-wild.
  ☆752Updated 3 weeks ago
• wavestone-cdt / EDRSandblast
  ☆1,457Updated 2 weeks ago
• Markakd / DirtyCred
  Kernel exploitation technique
  ☆561Updated 10 months ago
• mborgerson / mdec
  Decompilation as a Service. Explore multiple decompilers and compare their output with minimal effort. Upload binary, get decompilation.
  ☆452Updated 2 years ago
• akamai / akamai-security-research
  This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.
  ☆414Updated 5 months ago
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,137Updated 11 months ago
• netspooky / scare
  A multi-arch assembly REPL and emulator for your command line.
  ☆300Updated last year
• optiv / Mangle
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆1,154Updated last year
• RischardV / emoji-shellcoding
  🤩 Emoji shellcoding tools for RISC-V (32-bit and 64-bit)
  ☆173Updated last year
• Fahrj / reverse-ssh
  Statically-linked ssh server with reverse shell functionality for CTFs and such
  ☆912Updated last year
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,394Updated last year
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,370Updated 3 years ago
• hackerschoice / gsocket
  Connect like there is no firewall. Securely.
  ☆1,458Updated 2 weeks ago
• D1rkMtr / FilelessRemotePE
  ☆702Updated this week
• Crusaders-of-Rust / CVE-2022-0185
  CVE-2022-0185
  ☆366Updated 2 years ago
• Cracked5pider / Stardust
  A modern 64-bit position independent implant template
  ☆999Updated 4 months ago
• hasherezade / hollows_hunter
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆1,998Updated last week
• matthieu-hackwitharts / Win32_Offensive_Cheatsheet
  Win32 and Kernel abusing techniques for pentesters
  ☆909Updated last year
• afwu / PrintNightmare
  ☆943Updated this week
• Bonfee / CVE-2022-0995
  CVE-2022-0995 exploit
  ☆492Updated 2 years ago