citronneur / pamspy
Credentials Dumper for Linux using eBPF
☆1,111Updated last week
Related projects: ⓘ
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,751Updated 5 months ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,551Updated 11 months ago
- Connect like there is no firewall. Securely.☆1,458Updated 2 weeks ago
- A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.☆790Updated last year
- Windows x64 handcrafted token stealing kernel-mode shellcode☆502Updated 5 months ago
- MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash☆775Updated last year
- eBPF Port Knocking Tool☆230Updated last year
- Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.☆1,344Updated last year
- ebpfkit is a rootkit powered by eBPF☆746Updated last year
- Statically-linked ssh server with reverse shell functionality for CTFs and such☆912Updated last year
- Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.☆747Updated last week
- SSH-MITM - ssh audits made simple☆1,306Updated last week
- Execute ELF files without dropping them on disk☆468Updated 2 months ago
- Scan memory for secrets and more. Maybe eventually a full /proc toolkit.☆601Updated 2 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆1,394Updated last year
- Fully dockerized Linux kernel debugging environment☆732Updated this week
- SSH based reverse shell☆900Updated 2 months ago
- Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/☆1,708Updated last year
- Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.☆946Updated 3 months ago
- Sandman is a NTP based backdoor for red team engagements in hardened networks.☆766Updated 5 months ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆530Updated 2 months ago
- Fast and configurable TLS grabber focused on TLS based data collection.☆833Updated this week
- Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…☆1,113Updated 2 months ago
- A root exploit for CVE-2022-0847 (Dirty Pipe)☆1,085Updated 2 years ago
- CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation☆557Updated 2 years ago
- CVE-2022-0995 exploit☆492Updated 2 years ago
- Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent☆531Updated 3 years ago
- Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs☆1,154Updated last year
- Extract files from any kind of container formats☆2,145Updated this week
- Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your enviro…☆1,154Updated last month