Alternatives and similar repositories for pamspy:

Users that are interested in pamspy are comparing it to the libraries listed below

• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,814Updated 10 months ago
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,586Updated last year
• eeriedusk / knockles
  eBPF Port Knocking Tool
  ☆232Updated last year
• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆780Updated last year
• liamg / dismember
  Scan memory for secrets and more. Maybe eventually a full /proc toolkit.
  ☆639Updated 2 years ago
• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆815Updated last year
• 0xricksanchez / like-dbg
  Fully dockerized Linux kernel debugging environment
  ☆744Updated 4 months ago
• winterknife / PINKPANTHER
  Windows x64 handcrafted token stealing kernel-mode shellcode
  ☆505Updated 10 months ago
• Arinerron / CVE-2022-0847-DirtyPipe-Exploit
  A root exploit for CVE-2022-0847 (Dirty Pipe)
  ☆1,093Updated 2 years ago
• ssh-mitm / ssh-mitm
  SSH-MITM - ssh audits made simple
  ☆1,365Updated 3 weeks ago
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆580Updated 7 months ago
• tr3ee / CVE-2022-23222
  CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation
  ☆564Updated 2 years ago
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,381Updated 2 years ago
• Bonfee / CVE-2022-0995
  CVE-2022-0995 exploit
  ☆496Updated 2 years ago
• hackerschoice / gsocket
  Connect like there is no firewall. Securely.
  ☆1,617Updated 2 weeks ago
• Bonfee / CVE-2022-25636
  CVE-2022-25636
  ☆428Updated 2 years ago
• DavidBuchanan314 / monomorph
  MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
  ☆785Updated 2 years ago
• firefart / stunner
  Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.
  ☆779Updated this week
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆491Updated 7 months ago
• chompie1337 / Linux_LPE_eBPF_CVE-2021-3490
  ☆298Updated last year
• Fahrj / reverse-ssh
  Statically-linked ssh server with reverse shell functionality for CTFs and such
  ☆953Updated 2 years ago
• Crusaders-of-Rust / CVE-2022-0185
  CVE-2022-0185
  ☆367Updated 2 years ago
• Markakd / DirtyCred
  Kernel exploitation technique
  ☆569Updated last year
• quarkslab / peetch
  An eBPF playground
  ☆205Updated last year
• RedTeamPentesting / pretender
  Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
  ☆1,056Updated this week
• guardicore / IPCDump
  ☆247Updated 3 years ago
• onekey-sec / unblob
  Extract files from any kind of container formats
  ☆2,275Updated this week
• blendin / 3snake
  Tool for extracting information from newly spawned processes
  ☆745Updated 3 years ago
• evilsocket / medusa
  A fast and secure multi protocol honeypot.
  ☆313Updated 2 years ago
• h2337 / modreveal
  Utility to find hidden Linux kernel modules
  ☆144Updated 2 months ago