anvilsecure / ulexecveLinks
ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes.
☆191Updated last year
Alternatives and similar repositories for ulexecve
Users that are interested in ulexecve are comparing it to the libraries listed below
Sorting:
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆137Updated 2 years ago
- A stealthy ELF loader - no files, no execve, no RWX☆168Updated last year
- Linux Kernel module-less implant (backdoor)☆74Updated 4 years ago
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆120Updated 2 months ago
- Ghidra scripts for recovering string definitions in Go binaries☆116Updated 8 months ago
- stealth userland kit that doesn't use sys_clone/sys_execve call☆34Updated 3 months ago
- bdvl☆114Updated 3 years ago
- Userland exec PoC to be used as attack vector technique☆85Updated 6 months ago
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆117Updated last year
- eBPF hacks☆188Updated 7 months ago
- Elf binary infector written in Go.☆211Updated 6 months ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆128Updated 3 weeks ago
- ☆204Updated 9 months ago
- Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…☆89Updated last year
- Mara is a userland pty/tty sniffer☆53Updated last year
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆120Updated 3 years ago
- GERMY is a Linux Kernel n-day in the N_GSM line discipline☆49Updated last year
- Linux process injection PoCs☆29Updated last year
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆30Updated last year
- ☆69Updated 8 months ago
- This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…☆105Updated 11 months ago
- ☆47Updated 3 years ago
- Execute ELF files without dropping them on disk☆495Updated last year
- ☆274Updated 3 years ago
- ☆134Updated last year
- LD_PRELOAD rootkit☆134Updated last year
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆147Updated 2 years ago
- Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.☆90Updated last year
- Leveraging CVEs as North Stars in vulnerability discovery and comprehension.☆67Updated last year
- A Python gRPC Client Library for Sliver☆71Updated 3 months ago