h3xduck / TripleCross
A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
☆1,827Updated 11 months ago
Alternatives and similar repositories for TripleCross:
Users that are interested in TripleCross are comparing it to the libraries listed below
- ebpfkit is a rootkit powered by eBPF☆783Updated 2 years ago
- Credentials Dumper for Linux using eBPF☆1,136Updated 6 months ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆594Updated 8 months ago
- A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.☆823Updated 2 weeks ago
- awesome-linux-rootkits☆1,801Updated 2 months ago
- LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)☆1,956Updated last year
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,598Updated last year
- Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your enviro…☆1,211Updated 7 months ago
- Linux Kernel Hacking☆676Updated 11 months ago
- Linux kernel rootkit☆338Updated last month
- A root exploit for CVE-2022-0847 (Dirty Pipe)☆1,094Updated 3 years ago
- Redress - A tool for analyzing stripped Go binaries☆1,012Updated 2 weeks ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆1,430Updated last year
- Shikata ga nai (仕方がない) encoder ported into go with several improvements☆1,667Updated last year
- Linux/Windows post-exploitation framework made by linux user☆1,521Updated 3 weeks ago
- Nidhogg is an all-in-one simple to use windows kernel rootkit.☆1,915Updated 2 weeks ago
- LKM Linux rootkit☆2,686Updated 4 years ago
- Template-Driven AV/EDR Evasion Framework☆1,651Updated last year
- Practice Go programming and implement CobaltStrike's Beacon in Go☆1,183Updated 4 years ago
- A tool to kill antimalware protected processes☆1,427Updated 3 years ago
- Awesome EDR Bypass Resources For Ethical Hacking☆1,133Updated 2 months ago
- CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation☆565Updated 2 years ago
- Connect like there is no firewall. Securely.☆1,659Updated last week
- A collection of links related to VMware escape exploits☆1,411Updated 7 months ago
- Kernel exploitation technique☆571Updated last year
- Repository for information about 0-days exploited in-the-wild.☆782Updated 2 weeks ago
- Open-Source Shellcode & PE Packer☆1,925Updated last year
- Statically-linked ssh server with reverse shell functionality for CTFs and such☆953Updated 2 years ago
- Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.☆1,389Updated 2 years ago
- The swiss army knife of LSASS dumping☆1,898Updated 6 months ago