ebpfkit is a rootkit powered by eBPF
☆846Feb 28, 2023Updated 3 years ago
Alternatives and similar repositories for ebpfkit
Users that are interested in ebpfkit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆685Jul 7, 2024Updated last year
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆141Feb 28, 2023Updated 3 years ago
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,964Apr 7, 2024Updated 2 years ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,667Oct 19, 2023Updated 2 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆457Dec 20, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Linux Kernel Runtime Integrity with eBPF☆186Nov 23, 2023Updated 2 years ago
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,635Apr 27, 2026Updated last week
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Nov 30, 2024Updated last year
- Collection of Linux eBPF slides/documents.☆984Nov 15, 2023Updated 2 years ago
- a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数,避开基于execve系统调用监控的命令日志☆245May 8, 2019Updated 6 years ago
- CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation☆579Jun 7, 2022Updated 3 years ago
- LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)☆2,313Apr 27, 2026Updated last week
- awesome-linux-rootkits☆2,063Feb 15, 2026Updated 2 months ago
- Linux EDR written in Golang and based on eBPF.☆247May 24, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆27Nov 24, 2021Updated 4 years ago
- A golang ebpf libary based on cilium/ebpf and datadog/ebpf.☆350May 18, 2025Updated 11 months ago
- Scaffolding for BPF application development with libbpf and BPF CO-RE☆1,475Apr 9, 2026Updated 3 weeks ago
- ☆83Jan 23, 2022Updated 4 years ago
- Practice Go programming and implement CobaltStrike's Beacon in Go☆1,266Oct 2, 2020Updated 5 years ago
- ebpf WebShell/内核马,一种新型内核马/WebShell技术☆353Jan 8, 2024Updated 2 years ago
- Credentials Dumper for Linux using eBPF☆1,160Sep 9, 2024Updated last year
- bpflock - eBPF driven security for locking and auditing Linux machines☆152Feb 16, 2022Updated 4 years ago
- Automated upstream mirror for libbpf stand-alone build.☆2,687Apr 9, 2026Updated 3 weeks ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Linux Kernel Hacking☆757Apr 10, 2024Updated 2 years ago
- 📦 Make security testing of K8s, Docker, and Containerd easier.☆4,641Updated this week
- Self‑healing Gossip Mesh C2 with Assisted Peer Discovery, Modular Post‑Exploitation, and OPSEC‑Focused Transport☆1,704Updated this week
- Converts PE into a shellcode☆2,759Aug 30, 2025Updated 8 months ago
- SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature…☆1,274Aug 27, 2023Updated 2 years ago
- ETrace is a syscall tracing utility powered by eBPF☆26Feb 26, 2023Updated 3 years ago
- Adversary Emulation Framework☆11,110Updated this week
- k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.☆302Aug 30, 2021Updated 4 years ago
- Red-Team LKM☆636Apr 20, 2026Updated 2 weeks ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 检测绝大部分所谓的内存免杀马☆733Sep 15, 2022Updated 3 years ago
- /root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.☆351Feb 5, 2023Updated 3 years ago
- A curated list of awesome projects related to eBPF.☆5,051Apr 10, 2026Updated 3 weeks ago
- 恶意代码逃逸源代码 http://payloads.online☆760Mar 7, 2022Updated 4 years ago
- [WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐☆3,161Nov 6, 2025Updated 6 months ago
- WebSocket 内存马/Webshell,一种新型内存马/WebShell技术☆1,494Apr 10, 2023Updated 3 years ago
- Exploit tool implemented using ebpf.☆212Jun 4, 2024Updated last year