search

krisnova / boopkit

Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
Apache License 2.0
1.55k stars 168 forks source link

IP encapsulation for targets behind NAT/Proxy #8

Open krisnova opened 2 years ago

krisnova commented 2 years ago

Right now the saddr is subject to change during every hop. Ideally we could find a few bytes of memory we can pass over TCP in order to tell the server what we want it to do.