nnsee / fileless-elf-exec
Execute ELF files without dropping them on disk
☆468Updated 2 months ago
Related projects: ⓘ
- A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.☆790Updated last year
- This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.☆414Updated 5 months ago
- a tool to help operate in EDRs' blind spots☆639Updated 5 months ago
- ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…☆176Updated 8 months ago
- reverse shell using curl☆443Updated 4 months ago
- Comprehensive toolkit for Ghidra headless.☆345Updated last year
- Hide your payload in DNS☆601Updated last year
- Kubernetes exploitation tool☆352Updated last month
- ☆1,457Updated 2 weeks ago
- Venom is a library that meant to perform evasive communication using stolen browser socket☆369Updated 11 months ago
- ☆458Updated 9 months ago
- Convert shellcode into different formats!☆341Updated last year
- ☆359Updated this week
- Elf binary infector written in Go.☆202Updated 11 months ago
- A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…☆612Updated last year
- A memory-based evasion technique which makes shellcode invisible from process start to end.☆1,137Updated 11 months ago
- eBPF hacks☆170Updated last week
- ☆401Updated 2 years ago
- A tool to make socks connections through HTTP agents☆674Updated 3 years ago
- UAC bypass by abusing RPC and debug objects.☆598Updated 11 months ago
- A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…☆843Updated 3 months ago
- reverse shell using curl☆203Updated 4 months ago
- Kraken, a modular multi-language webshell coded by @secu_x11☆509Updated 7 months ago
- LPE exploit for CVE-2023-21768☆415Updated last year
- ☆294Updated last year
- Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …☆734Updated last year
- PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.☆551Updated 11 months ago
- nysm is a stealth post-exploitation container.☆235Updated 8 months ago
- ☆715Updated 2 years ago
- DPAPI looting remotely and locally in Python☆406Updated last month