Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/digilolnet/pint-c2
eBPF evading C2
https://github.com/digilolnet/pint-c2
av-bypass av-evasion c2 ebpf rat
Last synced: about 1 month ago
JSON representation
eBPF evading C2
- Host: GitHub
- URL: https://github.com/digilolnet/pint-c2
- Owner: digilolnet
- License: mit
- Created: 2024-03-07T20:12:35.000Z (10 months ago)
- Default Branch: master
- Last Pushed: 2024-03-16T21:27:16.000Z (9 months ago)
- Last Synced: 2024-10-13T19:20:31.271Z (2 months ago)
- Topics: av-bypass, av-evasion, c2, ebpf, rat
- Language: Python
- Homepage: https://www.digilol.net
- Size: 18.6 KB
- Stars: 0
- Watchers: 0
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
README
# Pint C2
This is a C2 that uses various techniques to evade from eBPF based security monitoring.## Features
* [Userland exec / reflective ELF loading](https://grugq.github.io/docs/ul_exec.txt).
* Event spamming / resource exhaustion.
* Sockets and TCP connection using io_uring.
* Map tampering (TODO).## Commands
* `ulexec [command]`
* `memfd [command]`
* `noise [on/off]`