DavidBuchanan314 / stelf-loader
A stealthy ELF loader - no files, no execve, no RWX
☆151Updated 8 months ago
Related projects: ⓘ
- ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…☆176Updated 8 months ago
- yxd - Yuu's heX Dumper☆87Updated 2 months ago
- Binary Golf Grand Prix☆43Updated 2 weeks ago
- Binary Golf Grand Prix☆109Updated 10 months ago
- Ghidra scripts for recovering string definitions in Go binaries☆100Updated 3 months ago
- Binary Type Inference Ghidra Plugin☆138Updated 7 months ago
- An architecture-agnostic ELF file flattener for shellcode☆213Updated 2 years ago
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆110Updated 4 months ago
- ☆80Updated 8 months ago
- A simple ptrace-less shared library injector for x64 Linux☆244Updated last year
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆112Updated last year
- x86 malware emulator☆190Updated 3 weeks ago
- A custom ELF linker/loader for installing ET_REL binary patches at runtime☆139Updated 2 weeks ago
- iTLB multihit PoC☆39Updated 10 months ago
- CLI tools to encode/decode things☆96Updated this week
- ☆59Updated last week
- A utility to fix intentionally corrupted UPX packed files.☆79Updated last year
- Resolve symbols from release rust binaries on Windows☆19Updated 8 months ago
- Highly advanced Linux anti-exploitation and anti-tamper binary protector for ELF.☆151Updated 2 years ago
- WinDbg extension written in Rust to dump the CPU / memory state of a running VM☆110Updated last month
- XZ backdoor reverse engineering☆90Updated last month
- ☆38Updated last month
- simple type recognition in decompiled executables☆96Updated 2 months ago
- ELF binary forensics tool for APT, virus, backdoor and rootkit detection☆42Updated 5 months ago
- stealth userland kit that doesn't use sys_clone/sys_execve call☆27Updated 8 months ago
- A Python script to download PDB files associated with a Portable Executable (PE)☆113Updated 2 months ago
- Demonstrate ability to read memfd_secret() data from the kernel☆57Updated 9 months ago
- Linux Kernel module-less implant (backdoor)☆64Updated 3 years ago
- Slides and Material for "SymbolicExecutionDemystified" Presentation @ Insomni'Hack 2022☆98Updated 2 years ago
- A collection of interesting ELF files for inspiration and testing☆24Updated last year