Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: fileless

cinit/LibcoreSyscall

A library for loading ELF from memory and/or making Linux syscalls on Android written in pure Java.

Language: Java - Size: 264 KB - Last synced at: 6 days ago - Pushed at: 3 months ago - Stars: 171 - Forks: 33

bytecode77/r77-rootkit

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

Language: C - Size: 5.08 MB - Last synced at: 26 days ago - Pushed at: 3 months ago - Stars: 1,931 - Forks: 433

EddieIvan01/memexec

A library for loading and executing PE (Portable Executable) from memory without ever touching the disk

Language: Rust - Size: 34.2 KB - Last synced at: 21 days ago - Pushed at: over 4 years ago - Stars: 150 - Forks: 20

RUTHER-DEV/Process-Hider

Hide processes from Task Manager by manually mapping itself into it and hooking NtQuerySystemInformation

Language: C++ - Size: 26.4 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

liamg/memit

:no_entry_sign::floppy_disk: Run binaries straight from memory in Linux

Language: Go - Size: 149 KB - Last synced at: about 1 month ago - Pushed at: about 2 years ago - Stars: 315 - Forks: 33

Leo4j/Invoke-SMBRemoting

Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement

Language: PowerShell - Size: 123 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 164 - Forks: 23

bytecode77/living-off-the-land

Fileless attack with persistence

Language: C++ - Size: 40 KB - Last synced at: about 1 month ago - Pushed at: 7 months ago - Stars: 352 - Forks: 57

ariary/fileless-xec

Stealth dropper executing remote binaries without dropping them on disk .(HTTP3 support, ICMP support, invisible tracks, cross-platform,...)

Language: Go - Size: 6.76 MB - Last synced at: about 1 month ago - Pushed at: 12 months ago - Stars: 198 - Forks: 39

SafeBreach-Labs/backdoros

backdorOS is an in-memory OS written in Python 2.7 with a built-in in-memory filesystem, hooks for open() calls and imports, Python REPL etc.

Language: Python - Size: 4.67 MB - Last synced at: 2 months ago - Pushed at: over 5 years ago - Stars: 68 - Forks: 12

bytecode77/slui-file-handler-hijack-privilege-escalation

Slui File Handler Hijack UAC Bypass Local Privilege Escalation

Language: C++ - Size: 10.7 KB - Last synced at: 3 months ago - Pushed at: about 3 years ago - Stars: 92 - Forks: 36

malwarekid/Fileless-PE

Python program Fileless-PE.py generates a Python script (PEloader.py) to load a DLL or EXE file from a given URL. It provides functionality to specify a method to execute if the file is a DLL. The script utilizes the pythonmemorymodule library for memory manipulation.

Language: Python - Size: 1.86 MB - Last synced at: 3 months ago - Pushed at: 11 months ago - Stars: 23 - Forks: 2

3NC0D/Powershell-Obfuscator

Powerful script for logical obfuscation of powershell scripts

Language: Python - Size: 4.88 KB - Last synced at: 3 months ago - Pushed at: over 6 years ago - Stars: 28 - Forks: 13

Chainski/Kematian-Stealer Fork of ChildrenOfYahweh/Kematian-Stealer

Fileless Open-Source Stealer, all logs will be sent using discord webhooks

Language: PowerShell - Size: 13.8 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 2 - Forks: 0

zerodaywolf/memx

Generate droppers that use memfd_create() to execute ELF binaries without dropping them on disk

Language: Go - Size: 2.93 KB - Last synced at: about 1 year ago - Pushed at: almost 2 years ago - Stars: 4 - Forks: 0

cyberok-org/php-hidden-webshell

Materials from the speech "How to protect yourself from hidden web shells"

Language: PHP - Size: 18.6 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 1 - Forks: 1

diante0x7/Fileless-Server

Test server utilizing Asyncio and Threading to perform basic administrative operations and receive data.

Language: Python - Size: 10.7 KB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 1 - Forks: 0

mcdulltii/psmalware 📦

Powershell Malware

Language: PowerShell - Size: 487 KB - Last synced at: over 2 years ago - Pushed at: almost 5 years ago - Stars: 4 - Forks: 2

Related Keywords
fileless 17 python 3 redteam 3 malware 3 fileless-attack 3 in-memory 2 dll 2 memfd 2 pe 2 rootkit 2 powershell 2 obfuscation 1 obfuscator 1 powershell-script 1 powersploit 1 protection 1 cookie-stealer 1 discord 1 powershell-malware 1 mimikatz 1 invoke 1 empire 1 base64-encoding 1 base64 1 virus 1 trojan 1 script 1 memory-execution 1 loader 1 exe 1 uac-bypass 1 payload 1 encoding 1 bypass 1 threading 1 server 1 asyncio 1 web-hacking 1 process-injection 1 php-webshell 1 php-backdoor 1 wifi-stealer 1 webhook 1 telegram-session-stealer 1 stealer 1 startup 1 session-stealer 1 screenshot 1 redteam-tools 1 powershell-stealer 1 persistence 1 pentesting 1 kematian-stealer 1 kematian 1 hacking 1 fud 1 ring0 1 rce 1 process 1 linux 1 hooks-api 1 driver 1 detour 1 cryptominer 1 windows-pe 1 malware-development 1 av-evasion 1 xposed 1 syscall 1 linux-syscall 1 libart 1 jni-android 1 jni 1 in-memory-execution 1 fileless-shellcode 1 fileless-injection 1 elf-loader 1 android-library 1 android 1 stealth 1 security 1 quic 1 pentest-tool 1 pentest 1 http3 1 golang 1 dropper 1 bypass-firewall 1 poc 1 shell 1 postexplotation 1 pentesting-tools 1 named-pipes 1 lateral-movement 1 command-execution 1 shenanigans 1 xmrig 1 windows-rootkits 1 win32api 1 vulnerability-research 1