sandflysecurity / sandfly-processdecloak
Sandfly Linux Stealth Rootkit Decloaking Utility
☆91Updated last year
Related projects ⓘ
Alternatives and complementary repositories for sandfly-processdecloak
- bdvl☆107Updated 2 years ago
- Binary to shellcode from an object/executable format 32 & 64-bit PE , ELF☆71Updated 3 years ago
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆167Updated 3 years ago
- Proxy Unix applications in the terminal☆113Updated 3 years ago
- Mara is a userland pty/tty sniffer☆52Updated 10 months ago
- Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.☆219Updated 5 years ago
- Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.☆57Updated last year
- A collection of projects demonstrating various commandline cloaking techniques on Linux☆53Updated 2 years ago
- Golang PE injection on windows☆159Updated 3 years ago
- ☆52Updated 3 years ago
- ELF Sectional docking payload injector system☆21Updated 2 years ago
- A small utility to deal with malware embedded hashes.☆48Updated last year
- Ingest openldap data into bloodhound☆78Updated 3 years ago
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆146Updated 3 weeks ago
- Bypassing NTFS permissions to read any files as unprivileged user.☆187Updated 4 years ago
- Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM☆120Updated 4 years ago
- Harvis is designed to automate your C2 Infrastructure.☆104Updated 2 years ago
- Static based decoders for malware samples☆93Updated 4 years ago
- A repository of previous info-sec presentations I've presented.☆155Updated last week
- ☆59Updated 4 months ago
- Proof of concept for injecting simple shellcode via ptrace into a running process.☆60Updated 2 years ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 2 years ago
- volatility explorer☆90Updated 3 years ago
- Cisco ASA Software and ASDM Security Research☆78Updated 2 years ago
- ☆58Updated 4 years ago
- YARI is an interactive debugger for YARA Language.☆88Updated this week
- LPE for CVE-2020-1054 targeting Windows 7 x64☆86Updated 4 years ago
- ☆49Updated 4 years ago