armosec / curingLinks
io_uring based rootkit
☆206Updated 2 months ago
Alternatives and similar repositories for curing
Users that are interested in curing are comparing it to the libraries listed below
Sorting:
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs☆335Updated this week
- eBPF hacks☆187Updated 6 months ago
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆116Updated last month
- eBPF Memory Dump Tool☆74Updated last week
- Rust Linux Kernel Module designed for LKM rootkit detection☆48Updated 3 months ago
- Userland exec PoC to be used as attack vector technique☆85Updated 4 months ago
- A library for intercepting system calls☆96Updated 5 months ago
- Zaps arguments and environment from the process list☆200Updated last year
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆158Updated 9 months ago
- WallEscape vulnerability in util-linux☆51Updated last year
- Utility to find hidden Linux kernel modules☆144Updated 6 months ago
- ☆134Updated last year
- An eBPF🐝 Keylogger with C2-based RCE payload delivery☆279Updated last month
- ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…☆189Updated last year
- Damn Vulnerable UEFI☆283Updated 9 months ago
- An ssh honeypot with the XZ backdoor. CVE-2024-3094☆142Updated last year
- Open Source eBPF Malware Analysis Framework☆48Updated 8 months ago
- A suite of services (SOCKS, FTP, shell, etc.) over Citrix, VMware Horizon and native Windows RDP virtual channels.☆248Updated last week
- An eBPF playground☆206Updated last year
- 🌐🐧 Browsable Linux kernel syscall tables built with Systrack (https://github.com/mebeim/systrack)☆185Updated 2 months ago
- The resources for glibc Malloc heap exploitation course by Maxwell Dulin and Security Innovation.☆158Updated 7 months ago
- nysm is a stealth post-exploitation container.☆250Updated last week
- A stealthy ELF loader - no files, no execve, no RWX☆167Updated last year
- Get root via TTY / TIOCSTI stuffing☆76Updated last month
- Python tool to resolve all strings in Go binaries obfuscated by garble☆107Updated 4 months ago
- Slides and files for the Reversing Rust Binaries: One step beyond strings workshop at REcon 2024, presented on June 28, 2024.☆78Updated 11 months ago
- eBPF Port Knocking Tool☆234Updated last year
- reverse shell using curl☆206Updated 4 months ago
- Linpmem is a linux memory acquisition tool☆84Updated last year
- Cheat sheet to detect and remove linux kernel rootkit☆67Updated 6 months ago