Alternatives and similar repositories for eBPF-hide-PID:

Users that are interested in eBPF-hide-PID are comparing it to the libraries listed below

• nickswang / kubekit
  kubernetes rootkit
  ☆31Updated last year
• airbus-cert / dirtypipe-ebpf_detection
  An eBPF detection program for CVE-2022-0847
  ☆28Updated 2 years ago
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆48Updated 6 months ago
• pathtofile / commandline_cloaking
  A collection of projects demonstrating various commandline cloaking techniques on Linux
  ☆57Updated 2 years ago
• Binary-Gecko / perf_PoC
  ☆16Updated 8 months ago
• redcanaryco / ebpfmon
  ☆87Updated 10 months ago
• Vali-Cyber / ebpf-attacks
  A collection of bypasses and exploits for eBPF-based cloud security.
  ☆22Updated last year
• 0xdea / backdoo-rs
  A simple Meterpreter stager written in Rust.
  ☆37Updated 7 months ago
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆42Updated last month
• 0x00000013 / huakiwi
  eBPF-based EDR for Linux
  ☆17Updated 8 months ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated 2 years ago
• hulto / rusty-keys
  Linux rust keylogger
  ☆16Updated last year
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 3 years ago
• b1-team / dll-hijack
  Dll hijack -- just one macro
  ☆11Updated last year
• The-Z-Labs / cli4bofs
  Command line interface for (running) BOFs
  ☆45Updated last month
• hardenedvault / ved-ebpf
  VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
  ☆156Updated 7 months ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆37Updated 2 years ago
• tin-z / CVE-2023-35086-POC
  POC of CVE-2023-35086 only DoS
  ☆45Updated last year
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆64Updated 7 months ago
• turekt / knockknockgo
  Pure Go rewrite of knockknock
  ☆10Updated 2 years ago
• hardenedvault / vault_range_poc
  Project Vault Range PoC: Know your enemy and yourself to build better defense-in-depth solution!
  ☆45Updated last month
• skyler-ferrante / CVE-2024-28085
  WallEscape vulnerability in util-linux
  ☆51Updated last year
• jonatanSh / shelf
  Python library to convert elf to os-independent shellcodes
  ☆57Updated last year
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆29Updated last year
• DataDog / dirtypipe-container-breakout-poc
  Container Excape PoC for CVE-2022-0847 "DirtyPipe"
  ☆78Updated 3 years ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 3 years ago
• iDigitalFlame / XrMT
  e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!
  ☆24Updated 8 months ago
• jojonas / db_nmap
  Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.
  ☆17Updated 5 months ago
• io-tl / Mara
  Mara is a userland pty/tty sniffer
  ☆53Updated last year
• melotic / nanostorm
  An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.
  ☆18Updated 4 months ago