Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
翻译 - Ring 3 rootkit具有单个文件安装程序和无文件持久性,可隐藏进程,文件,网络连接等。
🚫💾 Run binaries straight from memory in Linux
翻译 - 在 Linux 中直接从内存运行二进制文件:no_entry_sign::floppy_disk:
Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,...)
Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
A library for loading and executing PE (Portable Executable) from memory without ever touching the disk
Slui File Handler Hijack UAC Bypass Local Privilege Escalation
.NET Antivirus Evasion Tool (Exe2Bat)
backdorOS is an in-memory OS written in Python 2.7 with a built-in in-memory filesystem, hooks for open() calls and imports, Python REPL etc.
Powerful script for logical obfuscation of powershell scripts
Python program Fileless-PE.py generates a Python script (PEloader.py) to load a DLL or EXE file from a given URL. It provides functionality to specify a method to execute if the file is a DLL. The scr...
A Golang shellcode loader that receives payloads via ICMP packets from a C2 server to bypass firewalls
LOLGEN: Living Off The Land Payload Generator
Generate droppers that use memfd_create() to execute ELF binaries without dropping them on disk
Materials from the speech "How to protect yourself from hidden web shells"