MatheuZSecurity / ModTracerLinks
ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.
☆88Updated 7 months ago
Alternatives and similar repositories for ModTracer
Users that are interested in ModTracer are comparing it to the libraries listed below
Sorting:
- Make an Linux Kernel rootkit visible again.☆59Updated 7 months ago
- Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis☆70Updated last year
- The tool that bypasses the firewall's Application Based Rules and lets you connect to anywhere, ANY IP, ANY PORT and ANY APPLICATION.☆61Updated last year
- NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.☆68Updated last year
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆48Updated 9 months ago
- Lena's scripts/code/resources for malware analysis☆26Updated last year
- ROPDump is a command-line tool designed to analyze binary executables for potential Return-Oriented Programming (ROP) gadgets, buffer ove…☆86Updated last year
- PoC that downloads an executable from a public SSL certificate☆127Updated 2 months ago
- ☆85Updated last year
- payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filter☆107Updated last year
- Kooky cURL-powered replacement for reverse shell via /dev/tcp☆71Updated last week
- Repo for all my exploits/PoCs☆53Updated 5 months ago
- A proof-of-concept C2 channel through DuckDuckGo's image proxy service☆74Updated last year
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆174Updated last month
- PowerShell script to generate ShellCode in various formats☆43Updated last year
- In-Memory Rootkit For Linux and BSD☆82Updated 2 months ago
- ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.☆126Updated 6 months ago
- PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record☆42Updated last year
- RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging☆203Updated 7 months ago
- ☆59Updated 11 months ago
- ☆47Updated 3 months ago
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts.☆121Updated last year
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆49Updated 2 years ago
- Backdooring VSCode Projects☆79Updated 4 months ago
- Modular framework for automating triaging, malware analysis, and analyst workflows☆43Updated 5 months ago
- POC of GITHUB simple C2 in rust☆52Updated 2 months ago
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆116Updated 9 months ago
- DNS over HTTPS targeted malware (only runs once)☆95Updated 2 years ago
- vulnlab.com reaper writeup☆27Updated 2 years ago
- Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process☆72Updated last year