h3xduck / TripleCross

Related projects ⓘ

Alternatives and complementary repositories for TripleCross

• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,115Updated 2 months ago
• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆759Updated last year
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,569Updated last year
• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆798Updated last year
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆547Updated 4 months ago
• milabs / awesome-linux-rootkits
  awesome-linux-rootkits
  ☆1,716Updated last year
• bsauce / kernel-exploit-factory
  Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your enviro…
  ☆1,172Updated 2 months ago
• jm33-m0 / emp3r0r
  Linux/Windows post-exploitation framework made by linux user
  ☆1,322Updated 2 weeks ago
• m0nad / Diamorphine
  LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
  ☆1,830Updated last year
• mufeedvh / moonwalk
  Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
  ☆1,355Updated 2 years ago
• xcellerator / linux_kernel_hacking
  Linux Kernel Hacking
  ☆640Updated 6 months ago
• bats3c / shad0w
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,042Updated 3 years ago
• Fahrj / reverse-ssh
  Statically-linked ssh server with reverse shell functionality for CTFs and such
  ☆925Updated last year
• carloslack / KoviD
  Linux kernel rootkit
  ☆274Updated this week
• DeimosC2 / DeimosC2
  DeimosC2 is a Golang command and control framework for post-exploitation.
  ☆1,094Updated last year
• optiv / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,732Updated last year
• xairy / vmware-exploitation
  A collection of links related to VMware escape exploits
  ☆1,360Updated 2 months ago
• darkr4y / geacon
  Practice Go programming and implement CobaltStrike's Beacon in Go
  ☆1,145Updated 4 years ago
• googleprojectzero / 0days-in-the-wild
  Repository for information about 0-days exploited in-the-wild.
  ☆758Updated last week
• f0rb1dd3n / Reptile
  LKM Linux rootkit
  ☆2,607Updated 3 years ago
• stealthcopter / deepce
  Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
  ☆1,199Updated 5 months ago
• liamg / dismember
  Scan memory for secrets and more. Maybe eventually a full /proc toolkit.
  ☆608Updated 2 years ago
• Bonfee / CVE-2022-25636
  CVE-2022-25636
  ☆426Updated 2 years ago
• optiv / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆1,403Updated last year
• vxunderground / VX-API
  Collection of various malicious functionality to aid in malware development
  ☆1,493Updated 8 months ago
• nnsee / fileless-elf-exec
  Execute ELF files without dropping them on disk
  ☆482Updated 4 months ago
• Mr-Un1k0d3r / EDRs
  ☆2,012Updated last year
• Arinerron / CVE-2022-0847-DirtyPipe-Exploit
  A root exploit for CVE-2022-0847 (Dirty Pipe)
  ☆1,091Updated 2 years ago
• tr3ee / CVE-2022-23222
  CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation
  ☆559Updated 2 years ago
• its-a-feature / Mythic
  A collaborative, multi-platform, red teaming framework
  ☆3,246Updated this week