LID — Linux Integrity Drift: Bypassing AppArmor via eBPF pathname rewriting. Pre-LSM syscall argument manipulation with zero audit footprint. "Linux is Dying"
☆19May 25, 2026Updated last month
Alternatives and similar repositories for LID
Users that are interested in LID are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Kubernetes Forensic Collection Framework for Azure Kubernetes Service☆43Feb 9, 2026Updated 5 months ago
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆90Oct 20, 2025Updated 8 months ago
- SSH, PGP/GnuPG, Git, and GitHub training☆23Jun 9, 2026Updated last month
- Command and Control Framework using powershell implants☆36Jun 17, 2025Updated last year
- ☆18May 25, 2026Updated last month
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- OpenCode plugin for automatic API-key failover and rotation across multiple provider keys☆47Updated this week
- CVE-2026-45250 - FreeBSD 14.x LPE☆22May 21, 2026Updated last month
- A lightweight, multi-layer Linux sandbox combining namespaces, pivot_root, seccomp-bpf, capability dropping, and an evidence-based verdic…☆72Updated this week
- S I B E R G Ü V E N L I K E Ğ I T I M R E H B E R I E L K I TA B I☆44Jun 23, 2026Updated 3 weeks ago
- Creating attacks paths across management and data planes☆64Jun 1, 2026Updated last month
- Havoc BOF implementation of BYOVD attack to terminate PPL-protected EDR processes using a signed Microsoft kernel driver.☆39Apr 6, 2026Updated 3 months ago
- ☆14Jul 29, 2024Updated last year
- ProxyPanther is an enterprise-grade reverse proxy and web application firewall (WAF) platform built for professionals who demand control,…☆18Apr 30, 2026Updated 2 months ago
- Advanced EDR Evasion via AI Telemetry Spoofing & WASM Sandboxing. Project Onyx is a PoC Red Team pipeline designed to demonstrate advance…☆113Jun 30, 2026Updated 2 weeks ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Async BOF to capture KeePass master passwords by detecting and keylogging locked database windows.☆46Jun 18, 2026Updated 3 weeks ago
- Full-stack Amazon-inspired e-commerce platform built with Next.js, TypeScript, Prisma, MongoDB, and Stripe.☆17Jun 2, 2026Updated last month
- Async BOF to monitor and detect clipboard changes on a target system and return the clipboard contents.☆22May 5, 2026Updated 2 months ago
- Object file loader implemented as a post-ex DLL for asynchronous BOF execution.☆29Jun 15, 2026Updated 3 weeks ago
- ☆11Apr 23, 2019Updated 7 years ago
- A Proof-of-Concept bootkit inspired by Petya ransomware, written in Assembly, C, and C++☆259Jun 18, 2026Updated 3 weeks ago
- Cobalt Strike BOF used to perform privilege escalation by exploiting the SeImpersonate privilege. Based on the original GodPotato PoC by …☆273Apr 16, 2026Updated 2 months ago
- OWASP WSTG Türkçe Rehber☆16Apr 9, 2025Updated last year
- Active Directory forensic framework☆16May 18, 2026Updated last month
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Autonomous Windows POC developer from patchwatch diff reports☆66May 13, 2026Updated 2 months ago
- load arbitrary dlls, call any exported function, calls execute inside g0 as normal syscalls do from the traditional route, no syscall or …☆31May 4, 2026Updated 2 months ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆18Aug 3, 2023Updated 2 years ago
- Cobaltstrike UDRL with memory evasion☆15May 16, 2024Updated 2 years ago
- InfraGuard is a Command & Control Redirection Proxy and Manager which protects your Red Team Infrastructure against threat attribution☆161Updated this week
- David Lin's Windows 10 Cheatsheet☆11Mar 5, 2024Updated 2 years ago
- C# MCP server for kernel & user-mode Windows debugging — DbgEng COM, KDNET, Frida, dbgsrv, TTD, and integrated VM control. 29 tools for L…☆36Jul 5, 2026Updated last week
- The CIA Compliance Manager is an application that helps organizations assess and manage the availability, integrity, and confidentiality …☆20Updated this week
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆79Aug 25, 2025Updated 10 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A Docker lab integrating Splunk SIEM with Ollama LLM via MCP for AI security operations. Features Promptfoo OWASP evaluation, TA-ollama a…☆32Jul 3, 2026Updated last week
- PowerShell tool that shows how to read and write NTLM OWF values via samlib.dll.☆74Oct 22, 2025Updated 8 months ago
- A Linux ELF Packer/Loader for EDR evasion☆44Jun 12, 2026Updated last month
- This is a simple project made to evade https://github.com/thefLink/Hunt-Sleeping-Beacons by using a busy wait instead of beacon's built i…☆36Jan 15, 2022Updated 4 years ago
- Simple KDMapper driver dumper. Unlike other dumpers, this dumper dumps the PE headers of the image too.☆18May 10, 2024Updated 2 years ago
- first public in-process reflective PE loader for .NET NativeAOT binaries. maps a NativeAOT executable into the current process and execut…☆28Mar 28, 2026Updated 3 months ago
- A local tool for ingesting Windows Patch Tuesday CVEs, diffing patched binaries with Ghidriff and surfacing LLM-generated security analys…☆55May 19, 2026Updated last month