admin/TripleCross
1
0
Fork 0
mirror of https://github.com/h3xduck/TripleCross.git synced 2025-12-15 23:03:08 +08:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • d825d4c8c0 Added demos for RootedCON master Marcos Bajo 2023-03-08 19:34:21 +01:00
  • 6c7a0be982 Solve verifier issue when running XDP module, it complains because of array accesses #50 h3xduck 2023-02-18 23:46:29 +01:00
  • 51bf3efc38 Updated README to show specific software versions we used during development, also removed one extra free that resulted in errors in the client. h3xduck 2022-07-11 13:23:37 -04:00
  • 12629558b8 Merge branch 'master' of https://github.com/h3xduck/TFG h3xduck 2022-07-06 10:51:00 -04:00
  • 8a6f35a6b9 Updated compilation commands for tc program h3xduck 2022-07-06 10:50:50 -04:00
  • 2a7ad0f5e5 Removed unnecessary includes, fixes #39 h3xduck 2022-07-06 06:40:36 -04:00
  • 1f1c3e0958 Update README.md Marcos S. Bajo 2022-07-05 11:34:39 +02:00
  • a44c1f1d66 Update README.md Juan Tapiador 2022-07-04 17:37:29 +02:00
  • 8d23dd3062 Corrected typo Marcos S. Bajo 2022-07-03 21:41:22 +02:00
  • c5ab30148e Update README.md Juan Tapiador 2022-07-03 18:22:59 +02:00
  • 1fa40ce222 Update README.md Marcos S. Bajo 2022-07-03 18:05:32 +02:00
  • b50da514bc Update README.md Juan Tapiador 2022-07-03 17:54:21 +02:00
  • 046a2141b5 Update README.md Juan Tapiador 2022-07-03 17:38:11 +02:00
  • 732b258445 Update README.md Juan Tapiador 2022-07-03 17:34:59 +02:00
  • abcc84f6bb Minor changes to library injection explanation v0.1.0 h3xduck 2022-07-02 19:06:05 -04:00
  • 5b9427f8f8 Corrected some sentences h3xduck 2022-07-02 14:29:56 -04:00
  • f175783e9b New images and explanation for library injection section h3xduck 2022-07-02 13:50:29 -04:00
  • a9ab608875 Completed each module, some explanations still remain h3xduck 2022-07-02 10:48:59 -04:00
  • e95cc18d49 Adjusting tex docs h3xduck 2022-07-01 11:44:40 -04:00
  • bc4cdcee11 Delete docs/original_template directory Juan Tapiador 2022-07-01 17:27:35 +02:00
  • 9f7879d4bc Update README.md Juan Tapiador 2022-07-01 17:23:18 +02:00
  • cdce96ac86 Update README.md Juan Tapiador 2022-07-01 17:17:39 +02:00
  • 02d1aba310 Update README.md Juan Tapiador 2022-07-01 17:16:47 +02:00
  • 881d91eeac Merge branch 'master' of https://github.com/h3xduck/TFG h3xduck 2022-07-01 11:07:43 -04:00
  • 2b6fe08d7f README and license h3xduck 2022-07-01 11:06:10 -04:00
  • 6bada1844e Update README.md Juan Tapiador 2022-07-01 16:12:29 +02:00
  • e465d35dba Update README.md Juan Tapiador 2022-07-01 16:07:31 +02:00
  • 7eb18dce14 Removed libbpf bootstrap from repo h3xduck 2022-06-26 12:33:11 -04:00
  • 6746887478 Merge branch 'master' of https://github.com/h3xduck/TFG h3xduck 2022-06-25 12:11:06 -04:00
  • 102b72af05 Cleaned unnecessary files, new gitignore for previous clones h3xduck 2022-06-25 12:11:04 -04:00
  • caed9659d1 Update README.md Marcos S. Bajo 2022-06-23 22:01:50 +02:00
  • e3e7b20f83 Final modification h3xduck 2022-06-23 15:54:20 -04:00
  • e2e37b106a Delivered pdf h3xduck 2022-06-23 15:48:40 -04:00
  • 2c7b6b9ecf Final changes and final PDF h3xduck 2022-06-23 15:17:02 -04:00
  • ff1e92dd6b Corrected caps h3xduck 2022-06-23 14:20:32 -04:00
  • 559136e92e FINAL VERSION h3xduck 2022-06-23 14:04:48 -04:00
  • 51c4391c97 Adjusted the size of two images more h3xduck 2022-06-23 09:12:08 -04:00
  • caea1e7497 Revision of complete document + Abstract h3xduck 2022-06-23 08:57:05 -04:00
  • d9192c06ab COmpleted document structure and code availability h3xduck 2022-06-22 11:49:22 -04:00
  • d019e6168a pass over ch 8 jet 2022-06-22 16:16:47 +02:00
  • 7e05e596d7 Completed conclusions and future work h3xduck 2022-06-22 08:21:44 -04:00
  • ded698411e new gantt chart fig jet 2022-06-22 13:08:52 +02:00
  • 4a372d1b3f pass over ch7 jet 2022-06-22 13:05:29 +02:00
  • 1cd686e45b removing budget from here jet 2022-06-22 12:44:09 +02:00
  • b41c168292 pass over 1.3 jet 2022-06-22 12:39:16 +02:00
  • 8b7af85134 pass over 1.1 and 1.2 jet 2022-06-22 12:00:37 +02:00
  • 500314751b Completed budget, added gantt chart h3xduck 2022-06-21 23:13:30 -04:00
  • ee63e1fc64 Completed environment and regulatory framework h3xduck 2022-06-21 16:11:34 -04:00
  • 25bdcd361d pass over ch 6 jet 2022-06-21 17:32:28 +02:00
  • 42d4ce1d0b Completed chapter 6 h3xduck 2022-06-20 22:51:52 -04:00
  • dbdc1cbe9b Merge branch 'master' of https://github.com/h3xduck/TFG h3xduck 2022-06-20 15:10:35 -04:00
  • a542bef3b4 Almost completed chapter 6 h3xduck 2022-06-20 15:10:33 -04:00
  • ad1d8df547 minor edit jet 2022-06-20 12:02:25 +02:00
  • 5d6619ce40 Finished section 5. Multiple changes in the code according to the performed tests. h3xduck 2022-06-19 14:35:19 -04:00
  • bfcbfcfaf2 Added multiple small changes to client and code, submitting almost finished chapter 5 h3xduck 2022-06-18 10:57:10 -04:00
  • 1b766096bf Corrected grammar and spelling mistakes in the whole document h3xduck 2022-06-17 08:03:26 -04:00
  • 2b719ff0a5 Completed chapter 4 h3xduck 2022-06-16 20:38:15 -04:00
  • 7f4209299c Completed rootkit user space program h3xduck 2022-06-16 06:35:30 -04:00
  • e4737b3272 Completed rootkit client and rootkit user program ring buffer h3xduck 2022-06-15 22:54:20 -04:00
  • f98f65429b Forgot to modify one appearance of old name h3xduck 2022-06-15 20:40:18 -04:00
  • 80f334636a Changed the repository (and the rootkit!) name with TripleCross: https://dictionary.cambridge.org/dictionary/english/double-cross. This is 'triple' because it is a BPF program that betrays you at the userspace, at the kernel, and at the network. h3xduck 2022-06-15 20:33:07 -04:00
  • 75e92445e5 Modified terminal names in the client h3xduck 2022-06-15 19:09:58 -04:00
  • bdda5c4269 Modified client options once again for screenshots h3xduck 2022-06-15 18:42:31 -04:00
  • b284581712 Further changed some help in the client h3xduck 2022-06-15 17:48:21 -04:00
  • 081a23a44f Modified the help of the client, this is for making some screenshots h3xduck 2022-06-15 17:47:00 -04:00
  • 6f2ef04a92 Completed backdoor and c2 section h3xduck 2022-06-15 15:40:08 -04:00
  • 8f844c748b Completed command and control h3xduck 2022-06-15 12:45:59 -04:00
  • f09d6a6989 Continued with c2, bit i didnt like the structure, so it needs to be reformatted h3xduck 2022-06-14 20:31:57 -04:00
  • 9951f3a3fd Completed execution hijacking, completed first subsection of backdoor h3xduck 2022-06-14 15:44:21 -04:00
  • f3a834785a minor change in ch2 jet 2022-06-14 11:36:57 +02:00
  • 473b9af279 ch 3 title change jet 2022-06-14 11:34:58 +02:00
  • 163f923c55 Continued with execve hijacking. h3xduck 2022-06-13 22:16:34 -04:00
  • a1a41b02df Almost completed section about privilege escalation h3xduck 2022-06-13 15:44:37 -04:00
  • 99ad9c5548 New explanation for the injection technique (alternative scanning process) and added flow diagram with full process. h3xduck 2022-06-13 10:57:32 -04:00
  • 050684c4d7 Reformatted gitignore and removed some annoying files from cache h3xduck 2022-06-12 22:50:22 -04:00
  • 71b093141b Further advanced with the library injection, almost finished. Multiple enhancements h3xduck 2022-06-12 22:34:50 -04:00
  • 0aec74e024 New diagrams, completed rootkit architecture h3xduck 2022-06-12 08:16:59 -04:00
  • c14b407644 Added new rootkit overall diagram for architecture section h3xduck 2022-06-11 22:20:27 -04:00
  • d7a9b0e777 Updated injection module to ensure shellcode fits in code cave. Added simple reverse shell in injection lib h3xduck 2022-06-11 18:38:48 -04:00
  • e697dc867d Updated some style aspects, updated positions of tables and figures, other changes. h3xduck 2022-06-11 16:32:00 -04:00
  • e5bb65925d Updated document structure, reformatted multiple chapters, updated chapter and section intros. Separated hardening features into two. Other changes suggested at the meeting, h3xduck 2022-06-11 13:07:10 -04:00
  • 1595caa8d0 Continued with library injection attack h3xduck 2022-06-09 22:57:25 -04:00
  • a46339e912 Finished ROP by jeff dileo h3xduck 2022-06-08 08:59:32 -04:00
  • 5d67eddfd7 Finished rop explanation h3xduck 2022-06-07 15:38:42 -04:00
  • 65107f08ae Finished buffer overflow subsection h3xduck 2022-06-07 12:52:51 -04:00
  • fd927a7837 Started section about rootkit techniques h3xduck 2022-06-06 21:53:55 -04:00
  • 92103d234e Finished analysis of offensive capailities (techniques from defcon finally not included, at least for now) h3xduck 2022-06-06 20:50:28 -04:00
  • 55378027ab Completed memory corruption and continued with networking programs. h3xduck 2022-06-05 21:20:23 -04:00
  • 3f02cd4996 Continued with memory corruption. Only attacks remaining h3xduck 2022-06-05 09:01:09 -04:00
  • d4a881540f Continued with memory corruption study h3xduck 2022-06-04 08:55:45 -04:00
  • d184893426 Finished tracing programs part h3xduck 2022-06-03 21:47:00 -04:00
  • 8bc376e734 Continued with offensive tracing capabilities h3xduck 2022-06-02 21:07:42 -04:00
  • 2c3648a18a Continued with offensive capabilities, incorporated security features and started with tracing program features h3xduck 2022-06-02 19:00:10 -04:00
  • 5d5aafb46d Finished SotA h3xduck 2022-05-28 09:23:41 -04:00
  • 62e8e68dd5 Almost finished with SotA section. libbpf remains too get llvm and some functionality explained. h3xduck 2022-05-27 20:56:36 -04:00
  • 74e8163791 Continued with eBPF program types h3xduck 2022-05-26 21:47:28 -04:00
  • 47be741f04 Finished core eBPF section h3xduck 2022-05-26 15:21:00 -04:00
  • 079601ec22 Completed ebpf verifier h3xduck 2022-05-26 08:39:45 -04:00
  • a99c3e0f7d Continued with architecture, finished JIT, remodelled the second section of sSOTA h3xduck 2022-05-25 22:00:28 -04:00
  • 706198f95b Elaborated on ebpf architecture. Incoming explanation of JIT compiling h3xduck 2022-05-24 20:53:00 -04:00