Aviral2642 / kernelghostLinks
KernelGhost is a next-generation offensive security framework that combines stealthy eBPF-based rootkit capabilities with advanced hypervisor escape techniques. It enables persistent cross-VM access, stealth process hiding, UEFI firmware backdoors, and more all while evading modern detection systems.
☆16Updated 6 months ago
Alternatives and similar repositories for kernelghost
Users that are interested in kernelghost are comparing it to the libraries listed below
Sorting:
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆56Updated 9 months ago
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.☆25Updated 11 months ago
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes☆73Updated 5 months ago
- ☆84Updated 2 months ago
- An eBPF-based traffic obfuscation system that try to disguises WireGuard protocol traffic to bypass DPI and government censorship☆25Updated last month
- ☆64Updated 2 years ago
- A tool to help you to automate processes within kubernetes☆17Updated 7 months ago
- ☆25Updated 4 months ago
- Publications from the eBPF foundation☆28Updated last month
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆23Updated last year
- Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…☆68Updated 5 months ago
- A toy containers aware firewall built in Rust☆23Updated 2 years ago
- Demo repository for running eBPF in GitHub Actions☆22Updated 6 months ago
- Leaky Vessels Dynamic Detector☆103Updated 5 months ago
- Pwning IPv6 Networks☆34Updated last month
- Kubernetes offensive framework built in eBPF☆38Updated 2 years ago
- Service that scans your Infrastructure as Code for common vulnerabilities☆49Updated last year
- ☆89Updated last year
- [Edgeshark] Virtual communication discovery in container hosts☆30Updated 11 months ago
- Jibril: A performant and low impact Linux runtime security tool agent.☆13Updated 4 months ago
- This tool have the power to hide any PID/directory in the Linux kernel☆29Updated last year
- ☆89Updated 4 months ago
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster☆37Updated 3 years ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆74Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆109Updated 9 months ago
- ☆12Updated 10 months ago
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆30Updated 2 months ago
- Pentester-focused Docker registry tool to enumerate and pull images☆33Updated 2 months ago
- A repository to store Rad Fingerprinting data.☆24Updated last year
- Scan your account for the use of untrusted AMIs☆29Updated last month