Elf binary infector written in Go.
☆215Jan 11, 2025Updated last year
Alternatives and similar repositories for d0zer
Users that are interested in d0zer are comparing it to the libraries listed below
Sorting:
- ELF binary forensics tool for APT, virus, backdoor and rootkit detection☆51Nov 7, 2024Updated last year
- A Simple Linux ELF Runtime Crypter☆271Feb 25, 2025Updated last year
- Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging☆580Mar 8, 2024Updated last year
- Pakkero is a binary packer written in Go made for fun and educational purpose. Its main goal is to take in input a program file (elf bina…☆272Jan 16, 2023Updated 3 years ago
- BoobSnail allows generating Excel 4.0 XLM macro. Its purpose is to support the RedTeam and BlueTeam in XLM macro generation.☆258Mar 6, 2025Updated 11 months ago
- ☆28Aug 10, 2019Updated 6 years ago
- A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows☆52Jun 14, 2021Updated 4 years ago
- Elf binary parsing utility written in Go.☆70Oct 17, 2022Updated 3 years ago
- A from-scratch rewrite of The Backdoor Factory - a MitM tool for inserting shellcode into all types of binaries on the wire.☆380Aug 13, 2021Updated 4 years ago
- A crawler for kernel releases distributed by the major Linux distributions.☆13Oct 18, 2024Updated last year
- A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.☆297Aug 18, 2023Updated 2 years ago
- Aggrokatz is an aggressor plugin extension for Cobalt Strike which enables pypykatz to interface with the beacons remotely and allows it …☆156Apr 27, 2021Updated 4 years ago
- Execute MachO binaries in memory using CGo☆79May 24, 2021Updated 4 years ago
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆28Sep 11, 2021Updated 4 years ago
- ☆16May 15, 2021Updated 4 years ago
- An intuitive and encrypted in-memory filesystem (VFS)☆101Nov 20, 2025Updated 3 months ago
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆112Apr 8, 2020Updated 5 years ago
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆754Nov 16, 2021Updated 4 years ago
- Linux Sleep Obfuscation☆112Jan 7, 2024Updated 2 years ago
- Managed code hooking template.☆108Feb 15, 2021Updated 5 years ago
- Userland API Unhooker Project☆111Jun 14, 2021Updated 4 years ago
- A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls o…☆1,172Feb 25, 2023Updated 3 years ago
- A framework for easy payloads development and deployment, collection of customizable XSS payloads☆26Feb 20, 2022Updated 4 years ago
- Go implementation of the Heaven's Gate technique☆102Feb 11, 2021Updated 5 years ago
- A C2 post-exploitation framework☆484Jan 24, 2024Updated 2 years ago
- Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,.…☆205Jul 2, 2024Updated last year
- A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.☆722Aug 5, 2020Updated 5 years ago
- Run binaries straight from memory in Linux☆322Apr 17, 2023Updated 2 years ago
- A command line Windows API tracing tool for Golang binaries.☆159Dec 4, 2023Updated 2 years ago
- Work, timer, and wait callback example using solely Native Windows APIs.☆88Feb 11, 2024Updated 2 years ago
- A golang library designed to interact with Metasploit☆43Mar 27, 2021Updated 4 years ago
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,945Apr 7, 2024Updated last year
- ☆34Feb 9, 2018Updated 8 years ago
- Connect like there is no firewall. Securely.☆1,831Feb 23, 2026Updated last week
- A local LKM rootkit loader/dropper that lists available security mechanisms☆52Sep 4, 2021Updated 4 years ago
- AV/EDR evasion via direct system calls.☆1,795Sep 3, 2022Updated 3 years ago
- indirect syscalls for AV/EDR evasion in Go assembly☆374Jun 13, 2023Updated 2 years ago
- A faithful transposition of the key features/functionality of @itm4n's PPLDump project as a BOF.☆143Sep 24, 2021Updated 4 years ago
- A pure go implementation of the KVM API☆12Feb 4, 2019Updated 7 years ago