KernelGhost is a next-generation offensive security framework that combines stealthy eBPF-based rootkit capabilities with advanced hypervisor escape techniques. It enables persistent cross-VM access, stealth process hiding, UEFI firmware backdoors, and more all while evading modern detection systems.
☆19Apr 2, 2025Updated 11 months ago
Alternatives and similar repositories for kernelghost
Users that are interested in kernelghost are comparing it to the libraries listed below
Sorting:
- Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.☆29Sep 10, 2025Updated 6 months ago
- eBPF container escape detector prototype | Kernel 6.8+ | Early dev phase | Expect kernel panics ⚠️☆11Mar 18, 2025Updated last year
- Jibril: A performant and low impact Linux runtime security tool agent.☆15May 25, 2025Updated 9 months ago
- ☆15Jan 30, 2025Updated last year
- lightmon is a lightweight, Docker/K8s container-aware network traffic monitoring tool based on eBPF technology.☆15May 15, 2025Updated 10 months ago
- A tutorial about git☆12Dec 3, 2020Updated 5 years ago
- Measure UDP and TCP connection latency for IPv4 and IPv6 using eBPF and Go☆76Mar 9, 2026Updated last week
- Time series forecasting and analytics, powered by machine learning☆11Mar 25, 2025Updated 11 months ago
- Translate and Transcribe videos using AWS☆12Oct 21, 2024Updated last year
- ☆12Apr 15, 2022Updated 3 years ago
- Helping people get healthier through organic nutrition☆12Jul 10, 2024Updated last year
- Research on Commercial Space Projects☆18Oct 29, 2020Updated 5 years ago
- AI-Powered Code Reviews for Best Practices & Security Issues Across Languages☆21Aug 8, 2025Updated 7 months ago
- This project is a minimal eBPF-based Layer 4 (Transport Layer) network monitor that uses tc (Traffic Control) hooks to trace ingress and …☆30Aug 26, 2025Updated 6 months ago
- ☆10May 18, 2022Updated 3 years ago
- ☆17Feb 20, 2026Updated last month
- Contains Actual Events and Codes of Threat Groups, APTs, Research Groups☆19Sep 10, 2022Updated 3 years ago
- inline ip address types☆20Updated this week
- ☆19Updated this week
- The primary objective is to address the current absence of a Keycloak extension that supports webhook calls from individual Keycloak clie…☆12Jun 10, 2025Updated 9 months ago
- Generates Wireguard configuration files☆15Jul 26, 2022Updated 3 years ago
- A scraper made using beautiful soup 4 in python. Tailor made for extracting news from moneycontrol.com. Issue pull request for different …☆12Jun 21, 2020Updated 5 years ago
- The kernel tracer that attaches eBPF probes to containers for capturing TLS traffic☆37Feb 8, 2026Updated last month
- Collection of configuration files that can be used as good starting points to secure different services and tools☆17Nov 11, 2025Updated 4 months ago
- VyOS inside a container.☆15Jul 28, 2019Updated 6 years ago
- Dynamically configure Juniper network devices using metadata from Netbox. Mirror of https://gerrit.wikimedia.org/g/operations/software/ho…☆14Jan 12, 2026Updated 2 months ago
- Simple kernel module that hooks the `execve` syscall and waits for `date` to be executed with the `backd00r` argument followed by a PID n…☆24Apr 24, 2020Updated 5 years ago
- ☆12Feb 17, 2026Updated last month
- Offensive recon with GitHub Actions☆11Aug 25, 2024Updated last year
- OpenTelemetry Demo Semana DevOps LinuxTips☆17Feb 9, 2025Updated last year
- Ollama api implementation for spin☆11Feb 16, 2024Updated 2 years ago
- ☆15Nov 10, 2025Updated 4 months ago
- This is a tool for supporting the rapid word collection workshop and post workshop clean-up☆18Updated this week
- A container image based on wbitt/Network-MultiTool with some additional network utilities used in srl-labs☆23Updated this week
- text2sql with modern LLMs (duckdb-nsql, SQLCoder etc ...)☆18Apr 13, 2024Updated last year
- Scripts to spin up a Kubernetes cluster for learning purposes.☆16Aug 21, 2024Updated last year
- Docker DHCP Relay☆10Dec 6, 2024Updated last year
- Wireguard over TCP / HTTP using wstunnel for windows and linux☆11Feb 17, 2025Updated last year
- Bash-based recon automation script that orchestrates tools like Nmap, Dirsearch (Python), and crt.sh to perform port scanning, directory …☆15Jul 22, 2025Updated 7 months ago