Alternatives and similar repositories for eBPF-hide-PID:

Users that are interested in eBPF-hide-PID are comparing it to the libraries listed below

• nickswang / kubekit
  kubernetes rootkit
  ☆31Updated last year
• redcanaryco / ebpfmon
  ☆86Updated 9 months ago
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆39Updated last month
• airbus-cert / dirtypipe-ebpf_detection
  An eBPF detection program for CVE-2022-0847
  ☆28Updated 2 years ago
• pathtofile / commandline_cloaking
  A collection of projects demonstrating various commandline cloaking techniques on Linux
  ☆57Updated 2 years ago
• 0xdea / backdoo-rs
  A simple Meterpreter stager written in Rust.
  ☆35Updated 6 months ago
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 3 years ago
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆47Updated 5 months ago
• turekt / knockknockgo
  Pure Go rewrite of knockknock
  ☆10Updated 2 years ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆64Updated 7 months ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆37Updated 2 years ago
• akamai / Linux-Process-Injection
  ☆49Updated 4 months ago
• The-Z-Labs / cli4bofs
  Command line interface for (running) BOFs
  ☆44Updated 2 weeks ago
• b1-team / dll-hijack
  Dll hijack -- just one macro
  ☆11Updated last year
• 0x00000013 / huakiwi
  eBPF-based EDR for Linux
  ☆17Updated 7 months ago
• scriptchildie / gohellsgate
  Golang Implementation of Hell's gate
  ☆17Updated last year
• citronneur / blindssl
  Disable SSL certificate verification for all binaries that use libssl
  ☆49Updated 2 years ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated 2 years ago
• magisterquis / bin2memfd
  Loads a program into a memfd and runs it.
  ☆12Updated 2 years ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 3 years ago
• chumachok / cat-soup
  ebpf covert channel rootkit
  ☆14Updated last year
• Sh0ckFR / API-Hashing
  A basic exemple of the API-Hashing method used by Red Teamers but also by malwares developers in C++
  ☆36Updated last year
• Gui774ume / ssh-probe
  monitor and protect SSH sessions with eBPF
  ☆68Updated 3 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆29Updated last year
• Vali-Cyber / ebpf-attacks
  A collection of bypasses and exploits for eBPF-based cloud security.
  ☆21Updated last year
• Gui774ume / ebpfkit-monitor
  ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
  ☆129Updated 2 years ago
• dxxzero / rusty_drivers
  BYOVD collection
  ☆23Updated last year
• 0xTriboulet / ZeroTotal
  A collection of source code, binaries, and compilation scripts designed to bypass detection
  ☆25Updated 2 years ago
• Binary-Gecko / perf_PoC
  ☆16Updated 7 months ago
• skelsec / anfs
  Asynchronous NFSv3 client in pure Python
  ☆26Updated last month