Gui774ume / ebpfkitLinks
ebpfkit is a rootkit powered by eBPF
☆807Updated 2 years ago
Alternatives and similar repositories for ebpfkit
Users that are interested in ebpfkit are comparing it to the libraries listed below
Sorting:
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆644Updated last year
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,890Updated last year
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆134Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPF☆181Updated last year
- An eBPF playground☆207Updated last year
- A Linux Host-based Intrusion Detection System based on eBPF.☆442Updated last year
- Linux Kernel Hacking☆729Updated last year
- BTFhub, in collaboration with the BTFhub Archive repository, supplies BTF files for all published kernels that lack native support for em…☆452Updated last week
- ☆302Updated 2 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆149Updated 3 years ago
- libsinsp, libscap, the kernel module driver, and the eBPF driver sources☆284Updated last week
- ☆462Updated 2 months ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆297Updated 8 months ago
- The BTFhub Archive repository provides BTF files for those published kernels that lack native support for embedded BTF, thereby enhancing…☆121Updated this week
- Red-Team Linux kernel rootkit☆544Updated 2 weeks ago
- CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation☆572Updated 3 years ago
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆164Updated 11 months ago
- Dectect syscall hooking using eBPF☆160Updated 2 years ago
- Linux Kernel hooking engine (x86)☆359Updated 8 months ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,629Updated last year
- Scaffolding for BPF application development with libbpf and BPF CO-RE☆1,327Updated 2 months ago
- Get live information about applications that make network requests (based on eBPF)☆51Updated 6 months ago
- Credentials Dumper for Linux using eBPF☆1,148Updated 11 months ago
- A file system events notifier based on eBPF☆72Updated 2 years ago
- Redress - A tool for analyzing stripped Go binaries☆1,105Updated last week
- Examples for aquasecurity/libbpfgo and cilium/ebpf☆179Updated 2 months ago
- Linux EDR written in Golang and based on eBPF.☆244Updated 3 years ago
- An eBPF program debugger☆212Updated 3 years ago
- eBPF library for Go. Powered by libbpf.☆812Updated last week
- A Toolchain to make Build and Run eBPF programs easier☆782Updated last month