0x00000013 / huakiwiLinks
eBPF-based EDR for Linux
☆18Updated 11 months ago
Alternatives and similar repositories for huakiwi
Users that are interested in huakiwi are comparing it to the libraries listed below
Sorting:
- Golang Port Knocking for Linux + Windows☆18Updated 3 years ago
- Red Canary's eBPF Sensor☆109Updated 2 months ago
- ☆89Updated last year
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆94Updated last year
- A collection of projects demonstrating various commandline cloaking techniques on Linux☆59Updated 3 years ago
- Tiny embeddable dns server☆51Updated this week
- Look into EDR events from network☆23Updated 3 months ago
- This tool have the power to hide any PID/directory in the Linux kernel☆29Updated 11 months ago
- Checks for tpm vulnerabilities☆37Updated 2 years ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- enpoint detection / live analysis & sandbox host / signatures quality test☆44Updated 4 years ago
- JA4TScan is an active TCP server fingerprinting tool.☆87Updated 11 months ago
- Recog-Go: Pattern Recognition using Rapid7 Recog☆115Updated 2 years ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- Provides a multi-platform Graphical User Interface for hashlookup☆12Updated last year
- ☆65Updated 2 years ago
- ☆39Updated 2 years ago
- YARI is an interactive debugger for YARA Language.☆88Updated 2 months ago
- Sandfly Linux Stealth Rootkit Decloaking Utility☆102Updated 2 years ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆134Updated 2 years ago
- Collect autorun records from running system☆60Updated 3 years ago
- Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …☆159Updated last year
- Go library to allow native inline hooking in windows at runtime☆14Updated last year
- Go library to parse Executable and Linkable Format (ELF) files.☆49Updated last year
- Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.☆136Updated 3 weeks ago
- Linpmem is a linux memory acquisition tool☆87Updated 2 months ago
- Linux endpoint events for BPF enabled systems☆24Updated 2 years ago
- Hybrid memory/disk map☆57Updated this week
- CLI and Go package for fast, offline ASN lookups☆18Updated 5 months ago
- Go implementation of the Community ID flow hashing standard☆20Updated 4 months ago