KernelGhost is a next-generation offensive security framework that combines stealthy eBPF-based rootkit capabilities with advanced hypervisor escape techniques. It enables persistent cross-VM access, stealth process hiding, UEFI firmware backdoors, and more all while evading modern detection systems.
☆25Apr 2, 2025Updated last year
Alternatives and similar repositories for kernelghost
Users that are interested in kernelghost are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.☆29Sep 10, 2025Updated 7 months ago
- eBPF container escape detector prototype | Kernel 6.8+ | Early dev phase | Expect kernel panics ⚠️☆11Updated this week
- ☆21Oct 3, 2025Updated 6 months ago
- ☆22Updated this week
- ☆15Jan 30, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆16Updated this week
- A backstage extension for Quarkus☆15Apr 23, 2026Updated last week
- ☆12Nov 17, 2020Updated 5 years ago
- Simple and clear Rust implementation of the Af_XDP socket and XDP helpers.☆27Jul 9, 2025Updated 9 months ago
- Code-snippets for developing eBPF programs☆20Oct 6, 2025Updated 6 months ago
- lightmon is a lightweight, Docker/K8s container-aware network traffic monitoring tool based on eBPF technology.☆15May 15, 2025Updated 11 months ago
- a CLI tool for generating logs and metrics from eBPF telemetry, producing flamegraphs and actionable observability outputs☆16Mar 28, 2025Updated last year
- ☆12Jan 5, 2021Updated 5 years ago
- A tutorial about git☆12Dec 3, 2020Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Measure UDP and TCP connection latency for IPv4 and IPv6 using eBPF and Go☆76Apr 13, 2026Updated 2 weeks ago
- vxlan protocol / unknown unicast flooding technique + eBPF☆24Jun 3, 2025Updated 10 months ago
- Time series forecasting and analytics, powered by machine learning☆11Mar 25, 2025Updated last year
- A small tool to create a cv out of database entries in html and pdf☆18Jun 25, 2015Updated 10 years ago
- DNS Dashboard for hunting and identifying beaconing☆17Jul 29, 2020Updated 5 years ago
- Threat Hunt Investigation Methodology and Procedure☆15Jul 11, 2022Updated 3 years ago
- ☆12Apr 15, 2022Updated 4 years ago
- Helping people get healthier through organic nutrition☆12Jul 10, 2024Updated last year
- AI-Powered Code Reviews for Best Practices & Security Issues Across Languages☆21Aug 8, 2025Updated 8 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- 一个人的安全笔记。☆13Dec 2, 2021Updated 4 years ago
- Various BPF resources, tools, scripts and experiments created while learning more about the eBPF technology.☆22Jul 11, 2022Updated 3 years ago
- This project is a minimal eBPF-based Layer 4 (Transport Layer) network monitor that uses tc (Traffic Control) hooks to trace ingress and …☆29Aug 26, 2025Updated 8 months ago
- ☆10May 18, 2022Updated 3 years ago
- inline ip address types☆20Updated this week
- Basic lightweight tacacs+ container for testing Cisco devices☆12Jan 19, 2021Updated 5 years ago
- 💉 Core Services that make up the Antidote Platform☆16Dec 3, 2021Updated 4 years ago
- Use Docker Scout to analyze container images running in a Kubernetes cluster☆12Jun 18, 2024Updated last year
- Library of threat hunts to get any user started!☆50Sep 4, 2020Updated 5 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A scraper made using beautiful soup 4 in python. Tailor made for extracting news from moneycontrol.com. Issue pull request for different …☆12Jun 21, 2020Updated 5 years ago
- Collection of configuration files that can be used as good starting points to secure different services and tools☆17Mar 22, 2026Updated last month
- Dynamically configure Juniper network devices using metadata from Netbox. Mirror of https://gerrit.wikimedia.org/g/operations/software/ho…☆14Jan 12, 2026Updated 3 months ago
- Simple kernel module that hooks the `execve` syscall and waits for `date` to be executed with the `backd00r` argument followed by a PID n…☆24Apr 24, 2020Updated 6 years ago
- ☆12Apr 6, 2026Updated 3 weeks ago
- Salt execution module and state to manage SAP Applications (HANA only at the moment) and SUSE Linux Enterprise High Availability componen…☆14Sep 11, 2025Updated 7 months ago
- Whitepaper for the coraza-server implementation☆11Mar 16, 2022Updated 4 years ago