hackerschoice / bpfhacks
eBPF hacks
☆186Updated 4 months ago
Alternatives and similar repositories for bpfhacks:
Users that are interested in bpfhacks are comparing it to the libraries listed below
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆107Updated last week
- nysm is a stealth post-exploitation container.☆246Updated last year
- Userland exec PoC to be used as attack vector technique☆84Updated 2 months ago
- Get root via TTY / TIOCSTI stuffing☆71Updated 9 months ago
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs☆286Updated 3 months ago
- SSHD Based implant supporting tunneling mecanisms to reach the C2 (DNS, ICMP, HTTP Encapsulation, HTTP/Socks Proxies, UDP...)☆263Updated last month
- ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…☆184Updated last year
- An ssh honeypot with the XZ backdoor. CVE-2024-3094☆141Updated last year
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆156Updated 7 months ago
- reverse shell using curl☆206Updated last month
- ☆133Updated last year
- Signing-key abuse and update exploitation framework☆125Updated last week
- Linpmem is a linux memory acquisition tool☆82Updated 11 months ago
- Heavily-modified fork of David Buchanan's dlinject project. Injects arbitrary assembly (or precompiled binary) payloads directly into x86…☆127Updated 2 years ago
- Pack/Encrypt/Obfuscate ELF + SHELL scripts☆195Updated this week
- Linux Loadable Kernel Module (LKM) based rootkit (ring-0), capable of hiding itself, processes/implants, rmmod proof, has ability to bypa…☆247Updated last year
- Elf binary infector written in Go.☆208Updated 3 months ago
- ☆55Updated 6 months ago
- A delicious, but malicious SSL-VPN server 🌮☆217Updated 4 months ago
- In-Memory Rootkit For Linux☆69Updated 2 months ago
- Rust Linux Kernel Module designed for LKM rootkit detection☆39Updated last month
- A prototype malware C2 channel using x509 certificates over mTLS☆153Updated last year
- This repo contains write ups of vulnerabilities I've found and exploits I've publicly developed.☆145Updated 2 years ago
- Linux Kernel module-less implant (backdoor)☆72Updated 4 years ago
- Remote Command executor☆74Updated 2 years ago
- Cheat sheet to detect and remove linux kernel rootkit☆55Updated 4 months ago
- eBPF Memory Dump Tool☆64Updated last month
- An automatic Blind ROP exploitation tool☆201Updated last year
- bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or ch…☆86Updated last week
- Deluder is a tool for intercepting traffic of proxy unaware applications. Currently, Deluder supports OpenSSL, GnuTLS, SChannel, WinSock …☆185Updated 6 months ago