mephistolist / tito
In-Memory Rootkit For Linux
☆64Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for tito
- ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.☆62Updated 2 months ago
- Cheat sheet to detect and remove linux kernel rootkit☆25Updated this week
- Get root via TTY / TIOCSTI stuffing☆62Updated 4 months ago
- A C++ tool for process memory scanning & suspicious telemetry generation that attempts to detect a number of malicious techniques used by…☆78Updated 6 months ago
- NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.☆62Updated 10 months ago
- Make an Linux Kernel rootkit visible again.☆43Updated last month
- OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"☆43Updated 6 months ago
- Monarch - The Adversary Emulation Toolkit☆59Updated 10 months ago
- My shellcodes (or shellcodish-things) written for educational purpose in NASM assembly.☆32Updated 3 months ago
- ☆98Updated 3 weeks ago
- Hacking Windows through iTunes - Local Privilege Escalation 0-day☆91Updated last month
- Analyse MSI files for vulnerabilities☆109Updated 2 months ago
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆174Updated 10 months ago
- ROPDump is a command-line tool designed to analyze binary executables for potential Return-Oriented Programming (ROP) gadgets, buffer ove…☆83Updated 6 months ago
- Payload encoding utility to effectively lower payload entropy.☆99Updated this week
- Kooky cURL-powered replacement for reverse shell via /dev/tcp☆53Updated 3 weeks ago
- Lena's scripts/code/resources for malware analysis☆25Updated 5 months ago
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆95Updated 7 months ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆146Updated 3 weeks ago
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆77Updated 3 weeks ago
- lib-nosa is a minimalist C library designed to facilitate socket connections through AFD driver IOCTL operations on Windows.☆63Updated 2 months ago
- Leak NTLM via Website tab in teams via MS Office☆78Updated 7 months ago
- SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…☆125Updated 2 weeks ago
- Fortinet Fortimanager Unauthenticated Remote Code Execution AKA FortiJump CVE-2024-47575☆56Updated last week
- CVE-2024-38200 - Microsoft Office NTLMv2 Disclosure Vulnerability☆129Updated last month
- Nameless C2 - A C2 with all its components written in Rust☆242Updated last month
- ☆181Updated 9 months ago
- Tools for analyzing EDR agents☆209Updated 5 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆143Updated 6 months ago
- ☆24Updated last week