Alternatives and similar repositories for TripleCross

Users that are interested in TripleCross are comparing it to the libraries listed below

• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆805Updated 2 years ago
• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,147Updated 11 months ago
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,630Updated last year
• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆857Updated 4 months ago
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆637Updated last year
• carloslack / KoviD
  Red-Team Linux kernel rootkit
  ☆528Updated this week
• xcellerator / linux_kernel_hacking
  Linux Kernel Hacking
  ☆727Updated last year
• m0nad / Diamorphine
  LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
  ☆2,098Updated last year
• milabs / awesome-linux-rootkits
  awesome-linux-rootkits
  ☆1,879Updated 6 months ago
• bsauce / kernel-exploit-factory
  Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your enviro…
  ☆1,244Updated 11 months ago
• jm33-m0 / emp3r0r
  Linux/Windows post-exploitation framework made by linux user
  ☆1,603Updated last month
• gianlucaborello / libprocesshider
  Hide a process under Linux using the ld preloader (https://sysdig.com/blog/hiding-linux-processes-for-fun-and-profit/)
  ☆1,094Updated 6 years ago
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,451Updated last year
• EgeBalci / sgn
  Shikata ga nai (仕方がない) encoder ported into go with several improvements
  ☆1,762Updated last year
• DeimosC2 / DeimosC2
  DeimosC2 is a Golang command and control framework for post-exploitation.
  ☆1,129Updated 3 months ago
• hackerschoice / gsocket
  Connect like there is no firewall. Securely.
  ☆1,720Updated last month
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,459Updated 2 years ago
• Fahrj / reverse-ssh
  Statically-linked ssh server with reverse shell functionality for CTFs and such
  ☆992Updated 2 years ago
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆495Updated last year
• DavidBuchanan314 / monomorph
  MD5-Monomorphic Shellcode Packer - all payloads have the same MD5 hash
  ☆791Updated 2 years ago
• klezVirus / inceptor
  Template-Driven AV/EDR Evasion Framework
  ☆1,711Updated last year
• Mr-Un1k0d3r / EDRs
  ☆2,124Updated 2 years ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,106Updated 3 years ago
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,194Updated last year
• matro7sh / BypassAV
  This map lists the essential techniques to bypass anti-virus and EDR
  ☆2,880Updated 4 months ago
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,459Updated 4 years ago
• akamai / akamai-security-research
  This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.
  ☆511Updated last month
• darkr4y / geacon
  Practice Go programming and implement CobaltStrike's Beacon in Go
  ☆1,225Updated 4 years ago
• goretk / redress
  Redress - A tool for analyzing stripped Go binaries
  ☆1,097Updated 3 weeks ago
• Xacone / BestEdrOfTheMarket
  EDR Lab for Experimentation Purposes
  ☆1,316Updated 3 weeks ago