h3xduck / TripleCrossLinks
A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
☆1,860Updated last year
Alternatives and similar repositories for TripleCross
Users that are interested in TripleCross are comparing it to the libraries listed below
Sorting:
- ebpfkit is a rootkit powered by eBPF☆799Updated 2 years ago
- Credentials Dumper for Linux using eBPF☆1,138Updated 8 months ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,616Updated last year
- A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.☆842Updated 2 months ago
- Linux Kernel Hacking☆707Updated last year
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆612Updated 10 months ago
- LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)☆2,041Updated last year
- Red-Team Linux kernel rootkit☆478Updated last month
- Linux/Windows post-exploitation framework made by linux user☆1,555Updated last month
- awesome-linux-rootkits☆1,846Updated 4 months ago
- Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your enviro…☆1,230Updated 9 months ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,819Updated last year
- A collection of links related to VMware escape exploits☆1,432Updated 9 months ago
- LKM Linux rootkit☆2,733Updated 4 years ago
- DeimosC2 is a Golang command and control framework for post-exploitation.☆1,120Updated last month
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆1,443Updated last year
- Template-Driven AV/EDR Evasion Framework☆1,684Updated last year
- A tool to kill antimalware protected processes☆1,451Updated 3 years ago
- Open-Source Shellcode & PE Packer☆1,958Updated last year
- Awesome EDR Bypass Resources For Ethical Hacking☆1,196Updated 4 months ago
- Redress - A tool for analyzing stripped Go binaries☆1,061Updated 2 weeks ago
- Statically-linked ssh server with reverse shell functionality for CTFs and such☆976Updated 2 years ago
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,097Updated 3 years ago
- Shikata ga nai (仕方がない) encoder ported into go with several improvements☆1,706Updated last year
- The swiss army knife of LSASS dumping☆1,938Updated 8 months ago
- ☆1,655Updated 9 months ago
- AV/EDR evasion via direct system calls.☆1,884Updated 2 years ago
- ☆2,106Updated 2 years ago
- Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)☆1,319Updated 3 months ago
- Repository for information about 0-days exploited in-the-wild.☆797Updated last month