Alternatives and similar repositories for huakiwi

Users that are interested in huakiwi are comparing it to the libraries listed below

• pathtofile / commandline_cloaking
  A collection of projects demonstrating various commandline cloaking techniques on Linux
  ☆59Updated 3 years ago
• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆29Updated last year
• RITRedteam / vishnu
  Golang Port Knocking for Linux + Windows
  ☆18Updated 3 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆24Updated 4 months ago
• fox-it / OpenSSH-Session-Key-Recovery
  Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.
  ☆90Updated last year
• redcanaryco / ebpfmon
  ☆89Updated last year
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆109Updated 3 months ago
• immune-gmbh / tpm-vuln-checker
  Checks for tpm vulnerabilities
  ☆37Updated 2 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• hashlookup / hashlookup-gui
  Provides a multi-platform Graphical User Interface for hashlookup
  ☆12Updated last year
• airbus-cert / dirtypipe-ebpf_detection
  An eBPF detection program for CVE-2022-0847
  ☆28Updated 3 years ago
• sandflysecurity / sandfly-processdecloak
  Sandfly Linux Stealth Rootkit Decloaking Utility
  ☆103Updated 2 years ago
• projectdiscovery / tinydns
  Tiny embeddable dns server
  ☆52Updated last week
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆89Updated 2 weeks ago
• FoxIO-LLC / ja4tscan
  JA4TScan is an active TCP server fingerprinting tool.
  ☆88Updated last year
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆106Updated last year
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 8 months ago
• projectdiscovery / hmap
  Hybrid memory/disk map
  ☆59Updated last week
• 0xrawsec / golang-etw
  ☆41Updated 3 years ago
• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆101Updated 2 years ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆88Updated 3 months ago
• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆70Updated 6 months ago
• io-tl / Mara
  Mara is a userland pty/tty sniffer
  ☆54Updated last year
• knqyf263 / CVE-2023-50387
  KeyTrap (DNSSEC)
  ☆42Updated last year
• saferwall / elf
  Go library to parse Executable and Linkable Format (ELF) files.
  ☆51Updated last year
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆94Updated last year
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• hardenedvault / ved-ebpf
  VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
  ☆167Updated last year
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago