Search the Community
Showing results for tags 'ebpf'.
-
Linux backdoor, rootkit, and eBPF bypass tools. Remote command execution over raw TCP. Tested on Linux kernel 5.16 Tested on Linux kernel 5.17 Remote code execution over TCP (SSH, Nginx, Kubernetes, etc) Network gateway bypass (bad checksums, TCP reset) Self obfuscation at runtime (eBPF process hiding) Changelog v1.4 More improvements to code (docs, stability, etc) Client now supports -x for SYN only mode [hide][Hidden Content]]
-
It has been discovered that the Linux eBPF Spectre v1 mitigation is insufficient. View the full article
-
- linux
- insufficient
-
(and 3 more)
Tagged with: