DavidBuchanan314 / monomorph
MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
☆775Updated last year
Related projects: ⓘ
- A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.☆790Updated last year
- Credentials Dumper for Linux using eBPF☆1,111Updated last week
- The xx file format. Turn your hex dumps into art, then into binary data.☆336Updated last year
- Windows x64 handcrafted token stealing kernel-mode shellcode☆502Updated 5 months ago
- Execute ELF files without dropping them on disk☆468Updated 2 months ago
- How to exploit a double free vulnerability in 2021. Use After Free for Dummies☆1,313Updated 2 years ago
- A C compiler targeting an artistically pleasing nightmare for reverse engineers☆994Updated last year
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,751Updated 5 months ago
- Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.☆1,344Updated last year
- CVE-2023-3269: Linux kernel privilege escalation vulnerability☆461Updated last year
- Repository for information about 0-days exploited in-the-wild.☆752Updated 3 weeks ago
- ☆1,457Updated 2 weeks ago
- Kernel exploitation technique☆561Updated 10 months ago
- Decompilation as a Service. Explore multiple decompilers and compare their output with minimal effort. Upload binary, get decompilation.☆452Updated 2 years ago
- This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.☆414Updated 5 months ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,137Updated 11 months ago
- A multi-arch assembly REPL and emulator for your command line.☆300Updated last year
- Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs☆1,154Updated last year
- 🤩 Emoji shellcoding tools for RISC-V (32-bit and 64-bit)☆173Updated last year
- Statically-linked ssh server with reverse shell functionality for CTFs and such☆912Updated last year
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆1,394Updated last year
- A tool to kill antimalware protected processes☆1,370Updated 3 years ago
- Connect like there is no firewall. Securely.☆1,458Updated 2 weeks ago
- ☆702Updated this week
- CVE-2022-0185☆366Updated 2 years ago
- A modern 64-bit position independent implant template☆999Updated 4 months ago
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆1,998Updated last week
- Win32 and Kernel abusing techniques for pentesters☆909Updated last year
- ☆943Updated this week
- CVE-2022-0995 exploit☆492Updated 2 years ago