├── .github └── workflows │ ├── main.yml │ └── release.yml ├── .gitignore ├── LICENSE ├── Makefile ├── README.md ├── basic ├── README.md ├── c │ └── basic.c ├── go │ └── basic.go └── nim │ └── basic.nim ├── chrooter ├── README.md └── nim │ └── chrooter.nim ├── dodgy ├── README.md ├── c │ └── dodgy.c ├── go │ └── dodgy.go └── nim │ └── dodgy.nim ├── go.mod ├── go.sum ├── injector ├── README.md ├── asm │ └── shellcode.asm └── go │ └── injector.go ├── loader ├── README.md ├── c │ └── loader.c ├── go │ └── loader.go ├── nim │ └── loader.nim └── python │ └── loader.py ├── misc ├── chaoskoala.py ├── quietquokka.py └── tetragon_config_bin_write.yml ├── preload ├── README.md ├── c │ └── preload.c ├── go │ └── preload.go └── nim │ └── preload.nim ├── sysmon ├── README.md └── sysmon_config.xml └── tetragon ├── README.md ├── bin-overwrite.yml └── chroot.yml /.github/workflows/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/.github/workflows/main.yml -------------------------------------------------------------------------------- /.github/workflows/release.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/.github/workflows/release.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | # Binaries 2 | bin/* 3 | .vscode 4 | 5 | # Temp dir 6 | fake_root 7 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/Makefile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/README.md -------------------------------------------------------------------------------- /basic/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/basic/README.md -------------------------------------------------------------------------------- /basic/c/basic.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/basic/c/basic.c -------------------------------------------------------------------------------- /basic/go/basic.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/basic/go/basic.go -------------------------------------------------------------------------------- /basic/nim/basic.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/basic/nim/basic.nim -------------------------------------------------------------------------------- /chrooter/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/chrooter/README.md -------------------------------------------------------------------------------- /chrooter/nim/chrooter.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/chrooter/nim/chrooter.nim -------------------------------------------------------------------------------- /dodgy/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/dodgy/README.md -------------------------------------------------------------------------------- /dodgy/c/dodgy.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/dodgy/c/dodgy.c -------------------------------------------------------------------------------- /dodgy/go/dodgy.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/dodgy/go/dodgy.go -------------------------------------------------------------------------------- /dodgy/nim/dodgy.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/dodgy/nim/dodgy.nim -------------------------------------------------------------------------------- /go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/go.mod -------------------------------------------------------------------------------- /go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/go.sum -------------------------------------------------------------------------------- /injector/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/injector/README.md -------------------------------------------------------------------------------- /injector/asm/shellcode.asm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/injector/asm/shellcode.asm -------------------------------------------------------------------------------- /injector/go/injector.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/injector/go/injector.go -------------------------------------------------------------------------------- /loader/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/loader/README.md -------------------------------------------------------------------------------- /loader/c/loader.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/loader/c/loader.c -------------------------------------------------------------------------------- /loader/go/loader.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/loader/go/loader.go -------------------------------------------------------------------------------- /loader/nim/loader.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/loader/nim/loader.nim -------------------------------------------------------------------------------- /loader/python/loader.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/loader/python/loader.py -------------------------------------------------------------------------------- /misc/chaoskoala.py: -------------------------------------------------------------------------------- 1 | print(' ChaosKoala') 2 | -------------------------------------------------------------------------------- /misc/quietquokka.py: -------------------------------------------------------------------------------- 1 | print(' QuietQuokka') 2 | -------------------------------------------------------------------------------- /misc/tetragon_config_bin_write.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/misc/tetragon_config_bin_write.yml -------------------------------------------------------------------------------- /preload/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/preload/README.md -------------------------------------------------------------------------------- /preload/c/preload.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/preload/c/preload.c -------------------------------------------------------------------------------- /preload/go/preload.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/preload/go/preload.go -------------------------------------------------------------------------------- /preload/nim/preload.nim: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/preload/nim/preload.nim -------------------------------------------------------------------------------- /sysmon/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/sysmon/README.md -------------------------------------------------------------------------------- /sysmon/sysmon_config.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/sysmon/sysmon_config.xml -------------------------------------------------------------------------------- /tetragon/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/tetragon/README.md -------------------------------------------------------------------------------- /tetragon/bin-overwrite.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/tetragon/bin-overwrite.yml -------------------------------------------------------------------------------- /tetragon/chroot.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pathtofile/commandline_cloaking/HEAD/tetragon/chroot.yml --------------------------------------------------------------------------------