citronneur / pamspy

Related projects ⓘ

Alternatives and complementary repositories for pamspy

• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,786Updated 7 months ago
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,569Updated last year
• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆761Updated last year
• winterknife / PINKPANTHER
  Windows x64 handcrafted token stealing kernel-mode shellcode
  ☆503Updated 7 months ago
• firefart / stunner
  Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.
  ☆763Updated last week
• eeriedusk / knockles
  eBPF Port Knocking Tool
  ☆231Updated last year
• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆798Updated last year
• ssh-mitm / ssh-mitm
  SSH-MITM - ssh audits made simple
  ☆1,344Updated 2 months ago
• DavidBuchanan314 / monomorph
  MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
  ☆779Updated 2 years ago
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,356Updated 2 years ago
• hackerschoice / gsocket
  Connect like there is no firewall. Securely.
  ☆1,535Updated last week
• Fahrj / reverse-ssh
  Statically-linked ssh server with reverse shell functionality for CTFs and such
  ☆928Updated last year
• 0xricksanchez / like-dbg
  Fully dockerized Linux kernel debugging environment
  ☆737Updated last month
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆549Updated 4 months ago
• liamg / dismember
  Scan memory for secrets and more. Maybe eventually a full /proc toolkit.
  ☆608Updated 2 years ago
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆482Updated 4 months ago
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,404Updated last year
• sandialabs / wiretap
  Wiretap is a transparent, VPN-like proxy server that tunnels traffic via WireGuard and requires no special privileges to run.
  ☆854Updated this week
• RedTeamPentesting / pretender
  Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
  ☆967Updated 5 months ago
• lrh2000 / StackRot
  CVE-2023-3269: Linux kernel privilege escalation vulnerability
  ☆467Updated last year
• quarkslab / peetch
  An eBPF playground
  ☆195Updated 11 months ago
• onekey-sec / unblob
  Extract files from any kind of container formats
  ☆2,204Updated this week
• harporoeder / ebpfsnitch
  Linux Application Level Firewall based on eBPF and NFQUEUE.
  ☆695Updated last year
• sysdream / chashell
  Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.
  ☆1,058Updated 2 years ago
• chompie1337 / Linux_LPE_eBPF_CVE-2021-3490
  ☆296Updated last year
• sysdream / ligolo
  Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/
  ☆1,725Updated last year
• Bonfee / CVE-2022-0995
  CVE-2022-0995 exploit
  ☆495Updated 2 years ago
• optiv / Mangle
  Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
  ☆1,172Updated last year
• blendin / 3snake
  Tool for extracting information from newly spawned processes
  ☆735Updated 2 years ago
• Idov31 / Sandman
  Sandman is a NTP based backdoor for red team engagements in hardened networks.
  ☆771Updated 7 months ago