Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)
☆1,121Aug 2, 2019Updated 6 years ago
Alternatives and similar repositories for libprocesshider
Users that are interested in libprocesshider are comparing it to the libraries listed below
Sorting:
- LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)☆2,264Jan 24, 2026Updated last month
- awesome-linux-rootkits☆2,032Feb 15, 2026Updated 2 weeks ago
- Practice Go programming and implement CobaltStrike's Beacon in Go�☆1,262Oct 2, 2020Updated 5 years ago
- a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数,避开基于execve系统调用监控的命令日志☆245May 8, 2019Updated 6 years ago
- Load shellcode into a new process☆768Jun 2, 2021Updated 4 years ago
- generate CobaltStrike's cross-platform payload☆2,542Nov 20, 2023Updated 2 years ago
- shellcodeloader☆1,747Dec 11, 2020Updated 5 years ago
- Neo-reGeorg is a project that seeks to aggressively refactor reGeorg☆3,315Jan 4, 2026Updated last month
- sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆716Aug 3, 2021Updated 4 years ago
- Venom - A Multi-hop Proxy for Penetration Testers☆2,151May 11, 2022Updated 3 years ago
- Hunts out CobaltStrike beacons and logs operator command output☆951Sep 4, 2024Updated last year
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,942Apr 7, 2024Updated last year
- Cooolis-ms是一个包含了Metasploit Payload Loader、Cobalt Strike External C2 Loader、Reflective DLL injection的代码执行工具,它的定位在于能够在静态查杀上规避一些我们将要执行且含有特征的…☆929Jan 7, 2026Updated last month
- Proof of concept for LD_PRELOAD malware that uses extended attributes to protect files.☆119May 18, 2016Updated 9 years ago
- Bypass firewall for traffic forwarding using webshell☆1,430Sep 29, 2021Updated 4 years ago
- Open-Source Shellcode & PE Packer☆2,069Feb 3, 2024Updated 2 years ago
- CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能☆731Sep 1, 2021Updated 4 years ago
- a webshell resides in the memory of java web server☆699Jun 26, 2018Updated 7 years ago
- Tool for injecting a shared object into a Linux process☆1,221Feb 23, 2022Updated 4 years ago
- Hide processes as a normal user in Linux.☆261Jul 10, 2024Updated last year
- A native backdoor module for Microsoft IIS (Internet Information Services)☆557Jul 3, 2020Updated 5 years ago
- Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability detai…☆3,189Feb 15, 2023Updated 3 years ago
- WebSocket 内存马/Webshell,一种新型内存马/WebShell技术☆1,488Apr 10, 2023Updated 2 years ago
- Extracting Clear Text Passwords from mstsc.exe using API Hooking.☆1,426Jul 20, 2024Updated last year
- A Bypass Anti-virus Software Lateral Movement Command Execution Tool☆1,464Jan 20, 2025Updated last year
- Yet another SharpSphere☆227Aug 1, 2021Updated 4 years ago
- CobaltStrike后渗透测试插件☆1,554Oct 28, 2021Updated 4 years ago
- Java RCE 回显测试代码☆1,016Oct 15, 2020Updated 5 years ago
- fireELF - Fileless Linux Malware Framework☆679Apr 17, 2019Updated 6 years ago
- Tiny SHell is an open-source UNIX backdoor.☆708Sep 28, 2013Updated 12 years ago
- SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature…☆1,255Aug 27, 2023Updated 2 years ago
- The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.☆3,152Mar 6, 2025Updated 11 months ago
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆922Aug 19, 2021Updated 4 years ago
- Self‑healing Gossip Mesh C2 with Assisted Peer Discovery, Modular Post‑Exploitation, and OPSEC‑Focused Transport☆1,689Updated this week
- A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.☆879Mar 21, 2025Updated 11 months ago
- Hide process,port,self under Linux using the ld_preload☆173Nov 18, 2021Updated 4 years ago
- 绕过专业工具检测的Webshell研究文章和免杀的Webshell☆1,733Nov 15, 2020Updated 5 years ago
- Burp suite 分块传输辅助插件☆2,022Feb 23, 2022Updated 4 years ago
- AV/EDR evasion via direct system calls.☆1,793Sep 3, 2022Updated 3 years ago