anvilsecure / ulexecve
ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes.
☆184Updated last year
Alternatives and similar repositories for ulexecve:
Users that are interested in ulexecve are comparing it to the libraries listed below
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆127Updated 2 years ago
- A stealthy ELF loader - no files, no execve, no RWX☆160Updated last year
- Ghidra scripts for recovering string definitions in Go binaries☆110Updated 4 months ago
- Userland exec PoC to be used as attack vector technique☆82Updated 2 months ago
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆107Updated last week
- Linux Kernel module-less implant (backdoor)☆72Updated 4 years ago
- Elf binary infector written in Go.☆208Updated 2 months ago
- stealth userland kit that doesn't use sys_clone/sys_execve call☆30Updated last year
- Execute ELF files without dropping them on disk☆491Updated 9 months ago
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆114Updated 11 months ago
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆145Updated 2 years ago
- Injects additional machine instructions into various binary formats.☆277Updated last year
- bdvl☆113Updated 3 years ago
- A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.☆250Updated 4 months ago
- Leveraging CVEs as North Stars in vulnerability discovery and comprehension.☆65Updated last year
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆114Updated this week
- A suite of services (SOCKS, FTP, shell, etc.) over Citrix, VMware Horizon and native Windows RDP virtual channels.☆189Updated last week
- ☆213Updated last year
- ☆300Updated last year
- eBPF hacks☆186Updated 3 months ago
- ☆204Updated 5 months ago
- Slides and Material for "SymbolicExecutionDemystified" Presentation @ Insomni'Hack 2022☆100Updated 3 years ago
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆29Updated last year
- Get root via TTY / TIOCSTI stuffing☆70Updated 8 months ago
- Bring your own print driver privilege escalation tool☆248Updated 3 years ago
- A utility to fix intentionally corrupted UPX packed files.☆84Updated last year
- x86 malware emulator☆216Updated 2 weeks ago
- nysm is a stealth post-exploitation container.☆245Updated last year
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆120Updated 2 years ago
- LD_PRELOAD rootkit☆131Updated last year