Alternatives and similar repositories for TripleCross:

Users that are interested in TripleCross are comparing it to the libraries listed below

• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆780Updated 2 years ago
• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,132Updated 5 months ago
• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆817Updated last year
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆582Updated 7 months ago
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,589Updated last year
• xcellerator / linux_kernel_hacking
  Linux Kernel Hacking
  ☆667Updated 10 months ago
• jm33-m0 / emp3r0r
  Linux/Windows post-exploitation framework made by linux user
  ☆1,501Updated this week
• milabs / awesome-linux-rootkits
  awesome-linux-rootkits
  ☆1,791Updated last month
• bsauce / kernel-exploit-factory
  Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your enviro…
  ☆1,204Updated 6 months ago
• m0nad / Diamorphine
  LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
  ☆1,931Updated last year
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,428Updated last year
• Idov31 / Nidhogg
  Nidhogg is an all-in-one simple to use windows kernel rootkit.
  ☆1,885Updated 5 months ago
• stealthcopter / deepce
  Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
  ☆1,269Updated 2 weeks ago
• DeimosC2 / DeimosC2
  DeimosC2 is a Golang command and control framework for post-exploitation.
  ☆1,109Updated last year
• carloslack / KoviD
  Linux kernel rootkit
  ☆332Updated this week
• EgeBalci / sgn
  Shikata ga nai (仕方がない) encoder ported into go with several improvements
  ☆1,638Updated last year
• xairy / vmware-exploitation
  A collection of links related to VMware escape exploits
  ☆1,400Updated 5 months ago
• optiv / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,789Updated last year
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆492Updated 8 months ago
• ssh-mitm / ssh-mitm
  SSH-MITM - ssh audits made simple
  ☆1,369Updated last week
• bcoles / kernel-exploits
  Various kernel exploits
  ☆768Updated 11 months ago
• hasherezade / hollows_hunter
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,110Updated last week
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,074Updated 3 years ago
• darkr4y / geacon
  Practice Go programming and implement CobaltStrike's Beacon in Go
  ☆1,179Updated 4 years ago
• wavestone-cdt / EDRSandblast
  ☆1,597Updated 6 months ago
• phra / PEzor
  Open-Source Shellcode & PE Packer
  ☆1,914Updated last year
• f0rb1dd3n / Reptile
  LKM Linux rootkit
  ☆2,666Updated 3 years ago
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,416Updated 3 years ago
• Mr-Un1k0d3r / EDRs
  ☆2,046Updated 2 years ago
• microsoft / SysmonForLinux
  Sysmon for Linux
  ☆1,828Updated last week