0x00000013 / huakiwi
eBPF-based EDR for Linux
☆16Updated 6 months ago
Alternatives and similar repositories for huakiwi:
Users that are interested in huakiwi are comparing it to the libraries listed below
- Golang Port Knocking for Linux + Windows☆16Updated 3 years ago
- A collection of projects demonstrating various commandline cloaking techniques on Linux☆57Updated 2 years ago
- An eBPF detection program for CVE-2022-0847☆28Updated 2 years ago
- Collect autorun records from running system☆61Updated 3 years ago
- Go implementation of the Community ID flow hashing standard☆20Updated last week
- Look into EDR events from network☆23Updated 11 months ago
- 🚀 A lightweight, fast, and comprehensive solution for traffic analysis and intrusion detection.☆20Updated last week
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆22Updated 2 years ago
- #️⃣ 🕸️ 👤 HTTP Headers Hashing☆14Updated last year
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated last month
- RustHunter is a modular incident response framework based on Rust and Ansible to build and compare environmental baselines.☆18Updated 2 years ago
- This tool have the power to hide any PID/directory in the Linux kernel☆23Updated 6 months ago
- ☆86Updated 8 months ago
- A Portable Executable parser for Golang☆47Updated 2 months ago
- Loads a program into a memfd and runs it.☆12Updated 2 years ago
- Tiny embeddable dns server☆44Updated this week
- Finds imports that could be exploited, still requires manual analysis.☆27Updated 2 years ago
- Go library MalShare API☆12Updated 5 years ago
- Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma☆21Updated last year
- ☆33Updated 4 years ago
- A golang library designed to interact with Metasploit☆43Updated 3 years ago
- E4's C2 server☆19Updated 4 years ago
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆25Updated 3 years ago
- Simple unpacking script for Ezuri ELF Crypter☆32Updated 3 years ago
- This tool will listen on a given port, strip SSL encryption, forward traffic through a plain TCP proxy, then encrypt the returning traffi…☆30Updated 3 years ago
- Hacky linux memory probe. Yara or Regex scan process memory☆11Updated last year
- Simplified go-cat agent for caldera☆10Updated last year
- Golang parser for OLE files☆31Updated last week
- Go implementation of the PwnKit Linux Local Privilege Escalation exploit (CVE-2021-4034)☆8Updated 3 years ago
- Linux rust keylogger☆15Updated last year