h3xduck / TripleCross

Related projects ⓘ

Alternatives and complementary repositories for TripleCross

• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,116Updated 2 months ago
• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆761Updated last year
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆548Updated 4 months ago
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,571Updated last year
• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆799Updated last year
• jm33-m0 / emp3r0r
  Linux/Windows post-exploitation framework made by linux user
  ☆1,381Updated this week
• milabs / awesome-linux-rootkits
  awesome-linux-rootkits
  ☆1,725Updated last year
• bsauce / kernel-exploit-factory
  Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your enviro…
  ☆1,175Updated 3 months ago
• xcellerator / linux_kernel_hacking
  Linux Kernel Hacking
  ☆640Updated 7 months ago
• m0nad / Diamorphine
  LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
  ☆1,844Updated last year
• DeimosC2 / DeimosC2
  DeimosC2 is a Golang command and control framework for post-exploitation.
  ☆1,097Updated last year
• carloslack / KoviD
  Linux kernel rootkit
  ☆279Updated this week
• Fahrj / reverse-ssh
  Statically-linked ssh server with reverse shell functionality for CTFs and such
  ☆928Updated last year
• f0rb1dd3n / Reptile
  LKM Linux rootkit
  ☆2,613Updated 3 years ago
• xairy / vmware-exploitation
  A collection of links related to VMware escape exploits
  ☆1,362Updated 2 months ago
• EgeBalci / sgn
  Shikata ga nai (仕方がない) encoder ported into go with several improvements
  ☆1,536Updated 9 months ago
• hasherezade / hollows_hunter
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,037Updated 2 weeks ago
• matro7sh / BypassAV
  This map lists the essential techniques to bypass anti-virus and EDR
  ☆2,338Updated 11 months ago
• wikiZ / RedGuard
  RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
  ☆1,410Updated 3 months ago
• vxunderground / VXUG-Papers
  Research code & papers from members of vx-underground.
  ☆1,146Updated 2 years ago
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,358Updated 2 years ago
• Arinerron / CVE-2022-0847-DirtyPipe-Exploit
  A root exploit for CVE-2022-0847 (Dirty Pipe)
  ☆1,092Updated 2 years ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,046Updated 3 years ago
• Yaxser / Backstab
  A tool to kill antimalware protected processes
  ☆1,383Updated 3 years ago
• stealthcopter / deepce
  Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
  ☆1,209Updated 5 months ago
• darkr4y / geacon
  Practice Go programming and implement CobaltStrike's Beacon in Go
  ☆1,149Updated 4 years ago
• microsoft / SysmonForLinux
  Sysmon for Linux
  ☆1,749Updated last week
• NHAS / reverse_ssh
  SSH based reverse shell
  ☆966Updated this week
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆482Updated 4 months ago
• optiv / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,740Updated last year