nnsee / fileless-elf-exec

Related projects: ⓘ

• arget13 / DDexec
  A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.
  ☆790Updated last year
• akamai / akamai-security-research
  This repository includes code and IoCs that are the product of research done in Akamai's various security research teams.
  ☆414Updated 5 months ago
• naksyn / Pyramid
  a tool to help operate in EDRs' blind spots
  ☆639Updated 5 months ago
• anvilsecure / ulexecve
  ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries…
  ☆176Updated 8 months ago
• irsl / curlshell
  reverse shell using curl
  ☆443Updated 4 months ago
• 20urc3 / Sekiryu
  Comprehensive toolkit for Ghidra headless.
  ☆345Updated last year
• mhaskar / DNSStager
  Hide your payload in DNS
  ☆601Updated last year
• Rolix44 / Kubestroyer
  Kubernetes exploitation tool
  ☆352Updated last month
• wavestone-cdt / EDRSandblast
  ☆1,457Updated 2 weeks ago
• Idov31 / Venom
  Venom is a library that meant to perform evasive communication using stolen browser socket
  ☆369Updated 11 months ago
• persistence-info / persistence-info.github.io
  ☆458Updated 9 months ago
• preemptdev / bluffy
  Convert shellcode into different formats!
  ☆341Updated last year
• malcomvetter / Periscope
  ☆359Updated this week
• sad0p / d0zer
  Elf binary infector written in Go.
  ☆202Updated 11 months ago
• deepinstinct / Dirty-Vanity
  A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…
  ☆612Updated last year
• lem0nSec / ShellGhost
  A memory-based evasion technique which makes shellcode invisible from process start to end.
  ☆1,137Updated 11 months ago
• hackerschoice / bpfhacks
  eBPF hacks
  ☆170Updated last week
• ConsciousHacker / WFH
  ☆401Updated 2 years ago
• blackarrowsec / pivotnacci
  A tool to make socks connections through HTTP agents
  ☆674Updated 3 years ago
• Kudaes / Elevator
  UAC bypass by abusing RPC and debug objects.
  ☆598Updated 11 months ago
• mgeeky / PackMyPayload
  A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…
  ☆843Updated 3 months ago
• SkyperTHC / curlshell
  reverse shell using curl
  ☆203Updated 4 months ago
• kraken-ng / Kraken
  Kraken, a modular multi-language webshell coded by @secu_x11
  ☆509Updated 7 months ago
• xforcered / Windows_LPE_AFD_CVE-2023-21768
  LPE exploit for CVE-2023-21768
  ☆415Updated last year
• chompie1337 / Linux_LPE_eBPF_CVE-2021-3490
  ☆294Updated last year
• optiv / Ivy
  Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …
  ☆734Updated last year
• Idov31 / Cronos
  PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.
  ☆551Updated 11 months ago
• eeriedusk / nysm
  nysm is a stealth post-exploitation container.
  ☆235Updated 8 months ago
• Wh04m1001 / DFSCoerce
  ☆715Updated 2 years ago
• zblurx / dploot
  DPAPI looting remotely and locally in Python
  ☆406Updated last month