Gui774ume / krieView external linksLinks
Linux Kernel Runtime Integrity with eBPF
☆184Nov 23, 2023Updated 2 years ago
Alternatives and similar repositories for krie
Users that are interested in krie are comparing it to the libraries listed below
Sorting:
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆140Feb 28, 2023Updated 2 years ago
- ebpfkit is a rootkit powered by eBPF☆831Feb 28, 2023Updated 2 years ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)☆22Jun 15, 2023Updated 2 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 3 years ago
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,937Apr 7, 2024Updated last year
- A Linux Host-based Intrusion Detection System based on eBPF.☆457Dec 20, 2023Updated 2 years ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆680Jul 7, 2024Updated last year
- Vault Exploit Defense☆127Sep 7, 2024Updated last year
- The BTFhub Archive repository provides BTF files for those published kernels that lack native support for embedded BTF, thereby enhancing…☆131Updated this week
- Exploit for CVE-2022-29582 targeting Google's Kernel CTF☆77Aug 8, 2022Updated 3 years ago
- blackhat usa 2022 I attended☆73Sep 23, 2022Updated 3 years ago
- SyzScope is a research project that aims to reveal high-risk security bugs on Syzbot. Learn more details in our paper.☆83Jan 20, 2025Updated last year
- CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation☆578Jun 7, 2022Updated 3 years ago
- ☆86Jan 9, 2023Updated 3 years ago
- ☆15Apr 28, 2023Updated 2 years ago
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.☆92Sep 21, 2025Updated 4 months ago
- POC for Phantom Attack☆89Aug 10, 2022Updated 3 years ago
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆232Jun 2, 2024Updated last year
- Linux EDR written in Golang and based on eBPF.☆244May 24, 2022Updated 3 years ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,659Oct 19, 2023Updated 2 years ago
- Linux Runtime Security and Forensics using eBPF☆4,362Updated this week
- An exploit primitive in linux kernel inspired by DirtyPipe☆101Apr 5, 2022Updated 3 years ago
- This manager helps handle the life cycle of your eBPF programs☆154Updated this week
- ☆14Dec 26, 2022Updated 3 years ago
- ☆28Nov 24, 2021Updated 4 years ago
- An eBPF playground☆210Dec 12, 2023Updated 2 years ago
- 企业级安全智能化实践☆70Mar 16, 2022Updated 3 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆36Jan 20, 2022Updated 4 years ago
- UTrace is a tracing utility that leverages eBPF to trace both user space and kernel space functions☆50Jan 18, 2022Updated 4 years ago
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆168Sep 7, 2024Updated last year
- ☆470Oct 27, 2025Updated 3 months ago
- ☆177Jun 18, 2023Updated 2 years ago
- Example BPF program with LSM hooks☆35Feb 24, 2021Updated 4 years ago
- CVE-2022-31705 (Geekpwn 2022 Vmware EHCI OOB) POC☆119Jan 9, 2023Updated 3 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆137Feb 6, 2025Updated last year
- eBPF verifier based on abstract interpretation☆447Updated this week
- Quokka: A Fast and Accurate Binary Exporter☆209Updated this week
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- Dectect syscall hooking using eBPF☆168Apr 28, 2023Updated 2 years ago