Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
☆142May 27, 2025Updated 9 months ago
Alternatives and similar repositories for memexec
Users that are interested in memexec are comparing it to the libraries listed below
Sorting:
- Get root via TTY / TIOCSTI stuffing☆77May 12, 2025Updated 10 months ago
- sigreturn-oriented programming (SROP) based sleep obfuscation poc for Linux☆68Dec 15, 2025Updated 3 months ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆112Jun 23, 2025Updated 8 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆23Aug 30, 2024Updated last year
- Self replicating and automatically spreading SSH worm that recovers login credentials☆55Aug 31, 2023Updated 2 years ago
- Proof Of Concepts☆55Jan 4, 2026Updated 2 months ago
- ☆11Oct 17, 2024Updated last year
- ☆12May 5, 2024Updated last year
- ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.☆133Apr 13, 2025Updated 11 months ago
- PoC to tunnel via AWS Short-Message-Queues☆24Jun 21, 2025Updated 9 months ago
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs☆337Feb 27, 2026Updated 3 weeks ago
- PoC multi-layer protector for ELF32 x86 binaries☆12Feb 26, 2022Updated 4 years ago
- BinjaryNinja plugin for a ShellStorm like assembly/disassembly experience☆17Nov 28, 2024Updated last year
- SOCKS5 proxy tool that uses Azure Storage services as a means of communication.☆330Updated this week
- Golang tool designed to exfiltrate passwords found via the sshd and su services☆27Nov 23, 2025Updated 3 months ago
- Make BASH stealthy and hacker friendly with lots of bash functions☆320Mar 15, 2026Updated last week
- Linux Shared Library to Shellcode Loader☆89Feb 15, 2026Updated last month
- 读过的安全文章离线归档 | begin in 2023.11.23☆18Jun 4, 2024Updated last year
- In-Memory Rootkit For Linux and BSD☆87Aug 9, 2025Updated 7 months ago
- nysm is a stealth post-exploitation container.☆267Jun 19, 2025Updated 9 months ago
- This is a PoC code to exploit the IngressNightmare vulnerabilities (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974).☆248Mar 26, 2025Updated 11 months ago
- BOF that finds all the Nt* system call stubs within NTDLL and overwrites with clean syscall stubs (user land hook evasion)☆195Feb 6, 2025Updated last year
- Small tool to run ELF binaries from memory with a given process name☆173Oct 6, 2021Updated 4 years ago
- eBPF hacks☆197Dec 12, 2024Updated last year
- SSH password logging via PAM☆30Jul 7, 2020Updated 5 years ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆346Nov 19, 2024Updated last year
- Blog/Journal on how to backdoor VSCode extensions☆78Feb 24, 2026Updated 3 weeks ago
- Backdooring VSCode Projects☆128Jun 5, 2025Updated 9 months ago
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.☆129Jan 28, 2026Updated last month
- Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…☆118Aug 22, 2016Updated 9 years ago
- Ghosting-AMSI☆226Apr 24, 2025Updated 10 months ago
- A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes☆58Mar 18, 2015Updated 11 years ago
- Man in the middle for NLA enabled RDP in python☆15Nov 26, 2021Updated 4 years ago
- ☆183Feb 8, 2026Updated last month
- VaniSSH is a simple tool for generating vanity SSH public keys that start, contain, or end with specified strings.☆19Sep 21, 2025Updated 6 months ago
- Windows rootkit designed to work with BYOVD exploits☆217Jan 18, 2025Updated last year
- CVEs for Integrated Dell Remote Access Controller (iDRAC)☆22Updated this week
- Phrack Crackme Challenges☆21Apr 24, 2025Updated 10 months ago
- Simple unpacking script for Ezuri ELF Crypter☆37Jul 28, 2021Updated 4 years ago