ulexec / SHELF-LoadingLinks
Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
☆28Updated 3 years ago
Alternatives and similar repositories for SHELF-Loading
Users that are interested in SHELF-Loading are comparing it to the libraries listed below
Sorting:
- PoC multi-layer protector for ELF32 x86 binaries☆11Updated 3 years ago
- ☆27Updated 5 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- ☆14Updated 3 years ago
- yet another hidden LKM hunter☆23Updated last year
- ☆13Updated 2 years ago
- ☆47Updated 2 years ago
- ☆16Updated 4 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 5 years ago
- Michelangelo REanimator bootkit and REcon 2023 talk slides/materials☆30Updated last year
- An injector that use PT_LOAD technique☆12Updated 2 years ago
- call gates as stable comunication channel for NT x86 and Linux x86_64☆32Updated last year
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆30Updated last year
- ☆48Updated 4 years ago
- Rootkit spotter - experimental Linux rootkit finder LKM☆30Updated 4 years ago
- ☆18Updated 5 years ago
- Fix Go obfuscated binaries that were obfuscated using gobfuscator☆47Updated 3 years ago
- hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer☆33Updated last year
- ☆12Updated 3 years ago
- RenameLocalVars is an IDA plugin that renames local variables to something easier to read.☆15Updated last year
- Repository for Flare-On challenges and solutions/code☆9Updated 6 months ago
- ☆24Updated 2 years ago
- PoC of injecting code into a running Linux process☆23Updated 5 years ago
- Code injection from Linux kernel to a process☆21Updated 2 years ago
- DoublePulsar (Position-Independent) Shellcode (Windows 7 SP1 x64)☆27Updated 5 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆43Updated last year
- ELF Virus infection techniques that work with SCOP (Secure code partitioned) executables☆15Updated 6 years ago
- ☆12Updated 8 months ago
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Updated 10 months ago
- This is a simple tool to dump all the reparse points on an NTFS volume.☆33Updated 4 years ago