guitmz / ezuri

Related projects ⓘ

Alternatives and complementary repositories for ezuri

• sad0p / d0zer
  Elf binary infector written in Go.
  ☆206Updated last year
• Binject / backdoorfactory
  A from-scratch rewrite of The Backdoor Factory - a MitM tool for inserting shellcode into all types of binaries on the wire.
  ☆366Updated 3 years ago
• Binject / binjection
  Injects additional machine instructions into various binary formats.
  ☆271Updated 9 months ago
• sh4hin / GoPurple
  Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions
  ☆478Updated 3 years ago
• Error996 / bdvl
  bdvl
  ☆109Updated 2 years ago
• Binject / go-donut
  Donut Injector ported to pure Go. For use with https://github.com/TheWover/donut
  ☆313Updated 2 years ago
• chompie1337 / Linux_LPE_eBPF_CVE-2021-3490
  ☆296Updated last year
• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆119Updated 8 months ago
• C-Sto / BananaPhone
  It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)
  ☆482Updated 2 years ago
• p3nt4 / Nuages
  A modular C2 framework
  ☆398Updated this week
• Ne0nd0g / merlin-agent
  Post-exploitation agent for Merlin
  ☆185Updated last month
• malware-unicorn / GoPEInjection
  Golang PE injection on windows
  ☆159Updated 3 years ago
• ariary / fileless-xec
  Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.…
  ☆187Updated 4 months ago
• Cr4sh / MicroBackdoor
  Small and convenient C2 tool for Windows targets. [ Русский -- значит нахуй! ]
  ☆566Updated 2 years ago
• Binject / universal
  Universal Shared Library User-space Loader
  ☆217Updated 2 years ago
• LloydLabs / delete-self-poc
  A way to delete a locked file, or current running executable, on disk.
  ☆499Updated 3 months ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆223Updated 4 months ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆152Updated 3 years ago
• mav8557 / Father
  LD_PRELOAD rootkit
  ☆122Updated 8 months ago
• aaaddress1 / Skrull
  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…
  ☆448Updated 3 years ago
• carloslack / KoviD
  Linux kernel rootkit
  ☆278Updated this week
• rootfoo / rootkit
  Fully functional but simplified Linux Kernel Module (LKM) Rootkit for educational purposes
  ☆59Updated 5 years ago
• reveng007 / reveng_rtkit
  Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…
  ☆234Updated last year
• W3ndige / linux-process-injection
  Proof of concept for injecting simple shellcode via ptrace into a running process.
  ☆61Updated 2 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆169Updated 7 years ago
• forrest-orr / phantom-dll-hollower-poc
  Phantom DLL hollowing PoC
  ☆350Updated 2 years ago
• rajiv2790 / FalconEye
  ☆290Updated 3 years ago