anvilsecure / ulexecveLinks
ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes.
☆193Updated last year
Alternatives and similar repositories for ulexecve
Users that are interested in ulexecve are comparing it to the libraries listed below
Sorting:
- A stealthy ELF loader - no files, no execve, no RWX☆169Updated last year
- Linux Kernel module-less implant (backdoor)☆74Updated 4 years ago
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆138Updated 2 years ago
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆122Updated 3 months ago
- stealth userland kit that doesn't use sys_clone/sys_execve call☆34Updated 5 months ago
- Ghidra scripts for recovering string definitions in Go binaries☆118Updated 10 months ago
- Elf binary infector written in Go.☆211Updated 8 months ago
- eBPF hacks☆187Updated 9 months ago
- Execute ELF files without dropping them on disk☆495Updated last year
- rp-bf: A library to bruteforce ROP gadgets by emulating a Windows user-mode crash-dump☆119Updated last year
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆154Updated last month
- bdvl☆114Updated 3 years ago
- Userland exec PoC to be used as attack vector technique☆85Updated 7 months ago
- ☆205Updated 10 months ago
- LD_PRELOAD rootkit☆137Updated last year
- ☆73Updated 9 months ago
- A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in c…☆121Updated 3 years ago
- Linux process injection PoCs☆30Updated last year
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆30Updated 2 years ago
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆147Updated 2 years ago
- Mara is a userland pty/tty sniffer☆53Updated last year
- Proof of concept for injecting simple shellcode via ptrace into a running process.☆73Updated 2 years ago
- yxd - Yuu's heX Dumper☆90Updated last year
- A command line Windows API tracing tool for Golang binaries.☆158Updated last year
- Injects additional machine instructions into various binary formats.☆286Updated last year
- This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…☆106Updated last year
- Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…☆89Updated last year
- WallEscape vulnerability in util-linux☆52Updated last year
- ☆286Updated 3 years ago
- Toolkit to turn Chromium vulnerabilities into full-chain exploits☆216Updated this week