Alternatives and similar repositories for huakiwi:

Users that are interested in huakiwi are comparing it to the libraries listed below

• botherder / go-autoruns
  Collect autorun records from running system
  ☆61Updated 3 years ago
• RITRedteam / vishnu
  Golang Port Knocking for Linux + Windows
  ☆16Updated 3 years ago
• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆23Updated 7 months ago
• hrbrmstr / go-hhhash
  #️⃣ 🕸️ 👤 HTTP Headers Hashing
  ☆13Updated last year
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆20Updated last month
• teserakt-io / c2
  E4's C2 server
  ☆20Updated 4 years ago
• audibleblink / it-o
  Hacky linux memory probe. Yara or Regex scan process memory
  ☆11Updated last year
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated last year
• pathtofile / commandline_cloaking
  A collection of projects demonstrating various commandline cloaking techniques on Linux
  ☆57Updated 2 years ago
• sandflysecurity / sandfly-file-decloak
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆23Updated 2 years ago
• CERT-Polska / karton-config-extractor
  Static configuration extractor for the Karton framework
  ☆10Updated 2 months ago
• Velocidex / oleparse
  Golang parser for OLE files
  ☆31Updated last month
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 3 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆46Updated 3 months ago
• viktb / asnlookup
  CLI and Go package for fast, offline ASN lookups
  ☆17Updated last month
• immune-gmbh / tpm-vuln-checker
  Checks for tpm vulnerabilities
  ☆37Updated 2 years ago
• Loginsoft-LLC / Linux-Exploit-Detection
  Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma
  ☆21Updated last year
• airbus-cert / dirtypipe-ebpf_detection
  An eBPF detection program for CVE-2022-0847
  ☆28Updated 2 years ago
• redcanaryco / ebpfmon
  ☆86Updated 9 months ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆30Updated 4 years ago
• emperorcow / go-netscan
  ☆33Updated 4 years ago
• netmoth / netmoth
  🚀 A lightweight, fast, and comprehensive solution for traffic analysis and intrusion detection.
  ☆20Updated last week
• hosom / honeycred
  Utility to inject honey tokens into lsass.
  ☆28Updated 8 years ago
• magisterquis / bin2memfd
  Loads a program into a memfd and runs it.
  ☆12Updated 2 years ago
• projectdiscovery / tinydns
  Tiny embeddable dns server
  ☆46Updated this week
• elastic / siglearn
  Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
  ☆17Updated 2 months ago
• stratosphereips / yara-rules
  Repository of Yara rules created by the Stratosphere team
  ☆26Updated 3 years ago
• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆69Updated 3 weeks ago
• s-index / go-cve-search
  lightweight CVE search
  ☆21Updated 2 years ago