ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
☆140Feb 28, 2023Updated 3 years ago
Alternatives and similar repositories for ebpfkit-monitor
Users that are interested in ebpfkit-monitor are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ebpfkit is a rootkit powered by eBPF☆839Feb 28, 2023Updated 3 years ago
- Linux Kernel Runtime Integrity with eBPF☆184Nov 23, 2023Updated 2 years ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆684Jul 7, 2024Updated last year
- CO-RE code for the Netdata eBPF plugin.☆16Mar 20, 2026Updated 2 weeks ago
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,953Apr 7, 2024Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,662Oct 19, 2023Updated 2 years ago
- Collection of Linux eBPF slides/documents.☆985Nov 15, 2023Updated 2 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆457Dec 20, 2023Updated 2 years ago
- OPENED Tool to extract specific eBPF functions from large monoliths (tested on Katran, Mizar, Cilium..)☆14Jun 27, 2023Updated 2 years ago
- 利用chrome扩展 dump 浏览器cookie https://saucer-man.com/information_security/787.html☆15Sep 9, 2021Updated 4 years ago
- ☆12Sep 26, 2025Updated 6 months ago
- vArmor-ebpf is a specialized project dedicated to maintaining the BPF code utilized by vArmor.☆41Jan 26, 2026Updated 2 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆23Aug 30, 2024Updated last year
- Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.☆29Sep 10, 2025Updated 7 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- ☆11Sep 26, 2019Updated 6 years ago
- eBPF Programs☆66Jul 3, 2025Updated 9 months ago
- ☆22Jul 24, 2025Updated 8 months ago
- Container (Docker) escape exploits☆53Dec 15, 2021Updated 4 years ago
- Red Canary's eBPF Sensor☆113Mar 24, 2026Updated 2 weeks ago
- k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.☆301Aug 30, 2021Updated 4 years ago
- ☆20Jun 13, 2022Updated 3 years ago
- Vault Exploit Defense☆127Sep 7, 2024Updated last year
- CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation☆578Jun 7, 2022Updated 3 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- This repository is used to analysis the shared resources of different containers☆30Oct 22, 2024Updated last year
- a docker container behavior monitoring tool based on eBPF☆17Jul 22, 2023Updated 2 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 4 years ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Nov 30, 2024Updated last year
- Monitor and prevent unexpected behavior of Java programs.☆14Jul 6, 2021Updated 4 years ago
- A simple example of map_in_map usage in libbpf☆10Mar 18, 2020Updated 6 years ago
- Container Virtual Service☆13Aug 10, 2022Updated 3 years ago
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.☆93Sep 21, 2025Updated 6 months ago
- ☆17Aug 25, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Kubernetes offensive framework built in eBPF☆38Mar 14, 2023Updated 3 years ago
- ☆102Mar 8, 2022Updated 4 years ago
- A file system events notifier based on eBPF☆74Dec 5, 2025Updated 4 months ago
- Automatic credential collection☆21Aug 17, 2022Updated 3 years ago
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,628Apr 3, 2026Updated last week
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆170Sep 7, 2024Updated last year
- ☆471Oct 27, 2025Updated 5 months ago