fireELF - Fileless Linux Malware Framework
☆679Apr 17, 2019Updated 6 years ago
Alternatives and similar repositories for fireELF
Users that are interested in fireELF are comparing it to the libraries listed below
Sorting:
- A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会☆165Aug 21, 2019Updated 6 years ago
- mXtract - Memory Extractor & Analyzer☆589Nov 9, 2021Updated 4 years ago
- a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数,避开基于execve系统调用监控的命令日志☆245May 8, 2019Updated 6 years ago
- PostShell - Post Exploitation Bind/Backconnect Shell☆83Sep 9, 2019Updated 6 years ago
- Antivirus evasion project☆1,155Jan 19, 2025Updated last year
- Linux post exploitation framework written in bash designed to assist red teams in persistence, reconnaissance, privilege escalation and l…☆541Apr 14, 2021Updated 4 years ago
- Red Team Tool Kit☆1,133Dec 8, 2022Updated 3 years ago
- Load shellcode into a new process☆768Jun 2, 2021Updated 4 years ago
- Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.☆1,081Apr 5, 2022Updated 3 years ago
- Practice Go programming and implement CobaltStrike's Beacon in Go☆1,260Oct 2, 2020Updated 5 years ago
- PowerShell ReverseTCP Shell - Framework☆1,064Sep 18, 2022Updated 3 years ago
- Extracting Clear Text Passwords from mstsc.exe using API Hooking.☆1,426Jul 20, 2024Updated last year
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,167Sep 29, 2021Updated 4 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆2,232Dec 27, 2023Updated 2 years ago
- APT34/OILRIG leak☆232Apr 17, 2019Updated 6 years ago
- Payload Generation Framework☆1,964Aug 21, 2024Updated last year
- mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…☆768Feb 16, 2021Updated 5 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆1,606Jul 10, 2023Updated 2 years ago
- Venom - A Multi-hop Proxy for Penetration Testers☆2,151May 11, 2022Updated 3 years ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆824Mar 10, 2022Updated 3 years ago
- Process Injection☆766Oct 24, 2021Updated 4 years ago
- Windows Event Log Killer☆1,810Sep 21, 2023Updated 2 years ago
- A native backdoor module for Microsoft IIS (Internet Information Services)☆557Jul 3, 2020Updated 5 years ago
- Converts PE into a shellcode☆2,745Aug 30, 2025Updated 6 months ago
- 🕳 godoh - A DNS-over-HTTPS C2☆806Dec 19, 2023Updated 2 years ago
- Tunna is a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in full…☆1,269Sep 4, 2022Updated 3 years ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,727Jan 16, 2026Updated last month
- AntiVirus Evasion Tool☆1,741Apr 23, 2025Updated 10 months ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆4,462Jul 8, 2025Updated 7 months ago
- A tool mainly to erase specified records from Windows event logs, with additional functionalities.☆608Sep 7, 2018Updated 7 years ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,643Aug 28, 2025Updated 6 months ago
- [Linux] Two Privilege Escalation techniques abusing sudo token☆733Apr 14, 2019Updated 6 years ago
- Tool for injecting a shared object into a Linux process☆1,221Feb 23, 2022Updated 4 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆4,620Jul 18, 2024Updated last year
- Privilege Escalation Project - Windows / Linux / Mac☆2,602Oct 4, 2024Updated last year
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆477Apr 8, 2021Updated 4 years ago
- C/C++ source obfuscator for antivirus bypass☆1,062Mar 10, 2022Updated 3 years ago
- Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources☆1,528Jun 30, 2023Updated 2 years ago
- A Bypass Anti-virus Software Lateral Movement Command Execution Tool☆1,464Jan 20, 2025Updated last year