@outflank.bsky.social
New blog by Outflank’s Kyle Avery: Linux process injection leveraging seccomp to inject shared libraries into Linux processes without LD_PRELOAD, ptrace nor elevated privileges.
Parent-to-child injection at any ptrace_scope level 💪😎
Tech details here: https://ow.ly/frq350XGvfQ
Parent-to-child injection at any ptrace_scope level 💪😎
Tech details here: https://ow.ly/frq350XGvfQ
December 9, 2025 at 7:12 PM
New blog by Outflank’s Kyle Avery: Linux process injection leveraging seccomp to inject shared libraries into Linux processes without LD_PRELOAD, ptrace nor elevated privileges.
Parent-to-child injection at any ptrace_scope level 💪😎
Tech details here: https://ow.ly/frq350XGvfQ
Parent-to-child injection at any ptrace_scope level 💪😎
Tech details here: https://ow.ly/frq350XGvfQ
OST Release #20 shipped! Highlights of 2025 so far:
Hiding malware in secure enclaves
new file formats for code exec, lateral and persistence
Chromeo: Post-exploit tooling for Chromium
Async BOFs & BOF-PE support
Besides those, Lots of evasion and tradecraft additions… And much more to come!
Hiding malware in secure enclaves
new file formats for code exec, lateral and persistence
Chromeo: Post-exploit tooling for Chromium
Async BOFs & BOF-PE support
Besides those, Lots of evasion and tradecraft additions… And much more to come!
October 23, 2025 at 2:02 PM
OST Release #20 shipped! Highlights of 2025 so far:
Hiding malware in secure enclaves
new file formats for code exec, lateral and persistence
Chromeo: Post-exploit tooling for Chromium
Async BOFs & BOF-PE support
Besides those, Lots of evasion and tradecraft additions… And much more to come!
Hiding malware in secure enclaves
new file formats for code exec, lateral and persistence
Chromeo: Post-exploit tooling for Chromium
Async BOFs & BOF-PE support
Besides those, Lots of evasion and tradecraft additions… And much more to come!