arget13 / DDexecLinks
A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
☆866Updated 6 months ago
Alternatives and similar repositories for DDexec
Users that are interested in DDexec are comparing it to the libraries listed below
Sorting:
- Execute ELF files without dropping them on disk☆498Updated last year
- Red-Team Linux kernel rootkit☆581Updated last week
- Statically-linked ssh server with reverse shell functionality for CTFs and such☆999Updated 2 years ago
- MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash☆797Updated 3 years ago
- This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.☆514Updated 3 months ago
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,191Updated last year
- Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)☆1,387Updated 7 months ago
- A collection of statically compiled tools like Nmap and Socat.☆459Updated last year
- Windows Privilege Escalation from User to Domain Admin.☆1,415Updated 2 years ago
- A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.☆639Updated 2 years ago
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,903Updated last year
- Linux PAM Backdoor☆350Updated last year
- A small reverse shell for Linux & Windows☆612Updated last year
- SSH based reverse shell☆1,251Updated 2 weeks ago
- PoC for CVE-2023-4911☆388Updated 2 years ago
- Collection of Windows Privilege Escalation (Analyse/PoC/Exploit)☆452Updated 10 months ago
- Kernel exploitation technique☆578Updated last year
- CVE-2022-0185☆372Updated 3 years ago
- A tool to kill antimalware protected processes☆1,470Updated 4 years ago
- Open-Source Shellcode & PE Packer☆2,000Updated last year
- Collection of PoC and offensive techniques used by the BlackArrow Red Team☆1,135Updated last year
- DeimosC2 is a Golang command and control framework for post-exploitation.☆1,139Updated 5 months ago
- mTLS-Encrypted Back-Connect SOCKS5 Proxy☆462Updated 2 years ago
- Root shell PoC for CVE-2021-3156☆154Updated 3 years ago
- Credentials Dumper for Linux using eBPF☆1,145Updated last year
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆2,082Updated last month
- Another Windows Local Privilege Escalation from Service Account to System☆916Updated 2 years ago
- ☆1,719Updated last year
- Sandman is a NTP based backdoor for hardened networks.☆808Updated last year
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆1,313Updated last year