fexecve harness
fexecve harness is a collection of tools designed to execute programs directly in memory without writing them to disk. The tools support multiple delivery methods for receiving and executing payloads. The harness can download files from remote URLs and execute them with specified arguments. It also provides two netcat-based methods for payload delivery: one that connects to a remote host on a specified port to receive the payload, and another that listens for incoming connections on a local port. This approach allows for fileless execution of programs, which can be useful for various security testing scenarios where avoiding disk-based artifacts is desired. The tool operates by leveraging the fexecve system call to execute programs from file descriptors in memory rather than from traditional file paths on the filesystem.
FEATURES
SIMILAR TOOLS
A suite of tools for Wi-Fi network security assessment and penetration testing.
Tool for enumerating proxy configurations and generating CobaltStrike-compatible shellcode.
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
BeEF is a specialized penetration testing tool for exploiting web browser vulnerabilities to assess security.
Interactive online malware sandbox for real-time analysis and threat intelligence
A command that builds and executes command lines from standard input, allowing for the execution of commands with multiple arguments.
A digital archive of the internet, allowing users to capture and browse archived web pages.
A CVE compliant archive of public exploits and corresponding vulnerable software, and a categorized index of Internet search engine queries designed to uncover sensitive information.
SauronEye helps in identifying files containing sensitive data such as passwords through targeted directory searches.
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.