anvilsecure / ulexecveLinks
ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes.
☆188Updated last year
Alternatives and similar repositories for ulexecve
Users that are interested in ulexecve are comparing it to the libraries listed below
Sorting:
- A stealthy ELF loader - no files, no execve, no RWX☆164Updated last year
- Ghidra scripts for recovering string definitions in Go binaries☆114Updated 6 months ago
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆130Updated 2 years ago
- Userland exec PoC to be used as attack vector technique☆85Updated 4 months ago
- Linux Kernel module-less implant (backdoor)☆72Updated 4 years ago
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆114Updated this week
- Execute ELF files without dropping them on disk☆492Updated 11 months ago
- Elf binary infector written in Go.☆209Updated 4 months ago
- bdvl☆113Updated 3 years ago
- eBPF hacks☆187Updated 5 months ago
- Intercept stdin/stdout/stderr for any process☆198Updated 2 years ago
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆147Updated 2 years ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆117Updated last month
- ☆214Updated last year
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆115Updated last year
- yxd - Yuu's heX Dumper☆88Updated 11 months ago
- ☆203Updated 7 months ago
- Leveraging CVEs as North Stars in vulnerability discovery and comprehension.☆65Updated last year
- An architecture-agnostic ELF file flattener for shellcode☆218Updated 3 years ago
- Injects additional machine instructions into various binary formats.☆282Updated last year
- Exploring RPC interfaces on Windows☆321Updated last year
- stealth userland kit that doesn't use sys_clone/sys_execve call☆30Updated last month
- ☆302Updated last year
- Get root via TTY / TIOCSTI stuffing☆76Updated 3 weeks ago
- Radamsa fuzzer ported to rust lang☆153Updated 2 months ago
- A simple ptrace-less shared library injector for x64 Linux☆261Updated 2 years ago
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆30Updated last year
- Jormungandr is a kernel implementation of a COFF loader, allowing kernel developers to load and execute their COFFs in the kernel.☆231Updated last year
- Static Binary Instrumentation tool for Windows x64 executables☆203Updated 3 weeks ago
- Slides and Material for "SymbolicExecutionDemystified" Presentation @ Insomni'Hack 2022☆100Updated 3 years ago