ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
☆141Feb 28, 2023Updated 3 years ago
Alternatives and similar repositories for ebpfkit-monitor
Users that are interested in ebpfkit-monitor are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ebpfkit is a rootkit powered by eBPF☆844Feb 28, 2023Updated 3 years ago
- Linux Kernel Runtime Integrity with eBPF☆186Nov 23, 2023Updated 2 years ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆683Jul 7, 2024Updated last year
- CO-RE code for the Netdata eBPF plugin.☆16May 11, 2026Updated last week
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,960Apr 7, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,668Oct 19, 2023Updated 2 years ago
- CVE-2022-3910☆12Mar 14, 2023Updated 3 years ago
- Collection of Linux eBPF slides/documents.☆980Nov 15, 2023Updated 2 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆456Dec 20, 2023Updated 2 years ago
- OPENED Tool to extract specific eBPF functions from large monoliths (tested on Katran, Mizar, Cilium..)☆14Jun 27, 2023Updated 2 years ago
- 利用chrome扩展 dump 浏览器cookie https://saucer-man.com/information_security/787.html☆15Sep 9, 2021Updated 4 years ago
- vArmor-ebpf is a specialized project dedicated to maintaining the BPF code utilized by vArmor.☆41Jan 26, 2026Updated 3 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆24Apr 27, 2026Updated 3 weeks ago
- ☆11Sep 26, 2019Updated 6 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- eBPF Programs☆67May 2, 2026Updated 2 weeks ago
- Container (Docker) escape exploits☆52Dec 15, 2021Updated 4 years ago
- ☆26Apr 12, 2026Updated last month
- Red Canary's eBPF Sensor☆115Apr 15, 2026Updated last month
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Feb 17, 2022Updated 4 years ago
- k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.☆299Aug 30, 2021Updated 4 years ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)☆24Jun 15, 2023Updated 2 years ago
- Generate eBPF programs and tracing with ChatGPT☆272Mar 7, 2026Updated 2 months ago
- Vault Exploit Defense☆128Sep 7, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation☆578Jun 7, 2022Updated 3 years ago
- This repository is used to analysis the shared resources of different containers☆30Oct 22, 2024Updated last year
- a docker container behavior monitoring tool based on eBPF☆17Jul 22, 2023Updated 2 years ago
- Monitor and prevent unexpected behavior of Java programs.☆14Jul 6, 2021Updated 4 years ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Updated this week
- Container Virtual Service☆13Aug 10, 2022Updated 3 years ago
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.☆93Sep 21, 2025Updated 7 months ago
- SandFS helper library☆22Jan 25, 2020Updated 6 years ago
- ☆19Aug 25, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Kubernetes offensive framework built in eBPF☆39Mar 14, 2023Updated 3 years ago
- ☆101Mar 8, 2022Updated 4 years ago
- A file system events notifier based on eBPF☆74Dec 5, 2025Updated 5 months ago
- Automatic credential collection☆21Aug 17, 2022Updated 3 years ago
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,642May 11, 2026Updated last week
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆171Sep 7, 2024Updated last year
- ☆475Oct 27, 2025Updated 6 months ago