Alternatives and similar repositories for pamspy

Users that are interested in pamspy are comparing it to the libraries listed below

• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,912Updated last year
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,647Updated 2 years ago
• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆872Updated 8 months ago
• DavidBuchanan314 / monomorph
  MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
  ☆798Updated 3 years ago
• eeriedusk / knockles
  eBPF Port Knocking Tool
  ☆237Updated 2 years ago
• Fahrj / reverse-ssh
  Statically-linked ssh server with reverse shell functionality for CTFs and such
  ☆1,011Updated 2 years ago
• liamg / dismember
  Scan memory for secrets and more. Maybe eventually a full /proc toolkit.
  ☆666Updated 3 years ago
• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆821Updated 2 years ago
• ssh-mitm / ssh-mitm
  SSH-MITM - ssh audits made simple
  ☆1,419Updated 3 weeks ago
• hackerschoice / gsocket
  Connect like there is no firewall. Securely.
  ☆1,780Updated 2 weeks ago
• winterknife / PINKPANTHER
  Windows x64 handcrafted token stealing kernel-mode shellcode
  ☆511Updated last year
• firefart / stunner
  Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.
  ☆830Updated 2 weeks ago
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆499Updated last year
• optiv / Mangle
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆1,233Updated 2 years ago
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆673Updated last year
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,472Updated 3 years ago
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,462Updated 2 years ago
• Arinerron / CVE-2022-0847-DirtyPipe-Exploit
  A root exploit for CVE-2022-0847 (Dirty Pipe)
  ☆1,121Updated 3 years ago
• 0xricksanchez / like-dbg
  Fully dockerized Linux kernel debugging environment
  ☆770Updated last year
• irsl / gcp-dhcp-takeover-code-exec
  Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent
  ☆536Updated 4 years ago
• NHAS / reverse_ssh
  SSH based reverse shell
  ☆1,289Updated this week
• sysdream / ligolo
  Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/
  ☆1,784Updated 2 years ago
• Bonfee / CVE-2022-0995
  CVE-2022-0995 exploit
  ☆496Updated 3 years ago
• Markakd / DirtyCred
  Kernel exploitation technique
  ☆578Updated 2 years ago
• kagancapar / CVE-2022-29072
  7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Hel…
  ☆685Updated 3 years ago
• Idov31 / Sandman
  Sandman is a NTP based backdoor for hardened networks.
  ☆810Updated last year
• quarkslab / peetch
  An eBPF playground
  ☆209Updated last year
• RedTeamPentesting / pretender
  Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
  ☆1,236Updated last week
• evilsocket / spycast
  A crossplatform mDNS enumeration tool.
  ☆360Updated 3 years ago
• Idov31 / FunctionStomping
  Shellcode injection technique. Given as C++ header, standalone Rust program or library.
  ☆706Updated 2 years ago