Alternatives and similar repositories for pangolin:

Users that are interested in pangolin are comparing it to the libraries listed below

• z789 / hide_proc
  The demo of hidden process and ko module
  ☆17Updated 2 years ago
• chriskaliX / Hades
  Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
  ☆290Updated 3 months ago
• QAX-A-Team / ptrace
  a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数，避开基于execve系统调用监控的命令日志
  ☆241Updated 5 years ago
• duowen1 / Container-escape-exps
  Container (Docker) escape exploits
  ☆51Updated 3 years ago
• huoji120 / CobaltStrikeDetected
  40行代码检测到大部分CobaltStrike的shellcode
  ☆285Updated 3 years ago
• k-k-k-k-k / CVE-2021-1732
  CVE-­2021­-1732 Microsoft Windows 10 本地提权漏 研究及Poc/Exploit开发
  ☆81Updated 4 years ago
• ZhuriLab / Exploits
  CVE exploits for Web, Windows, Linux and others are independently written by Zhuri Lab
  ☆48Updated 4 years ago
• h2-stack / LL-RASP
  Low-level RASP: Protecting Applications Implemented in High-level Programming Languages
  ☆59Updated last year
• lxraa / v8_exp
  ☆50Updated 2 years ago
• TomAPU / bpfcronescape
  ☆83Updated 3 years ago
• LaPhilosophie / hello-rootkit
  一个基于LKM的Linux内核级rootkit的实现，包含模块隐藏、提权、文件隐藏、进程隐藏、端口隐藏功能
  ☆76Updated last year
• zhangyoufu / pokemongo
  Go语言，不允许import，请开始你的表演
  ☆64Updated 2 years ago
• chenaotian / CVE-2022-0185
  CVE-2022-0185 POC and Docker and Analysis write up
  ☆37Updated 2 years ago
• gojue / rootkit-sample
  ☆47Updated 3 years ago
• ODDFuzz / ODDFuzz
  S&P2023 Paper
  ☆39Updated 2 years ago
• Vu1nT0tal / IDA-Pro-tips
  IDA Pro每周小技巧
  ☆276Updated 2 years ago
• 1013503897 / port_resue
  Linux下应用层注入/hook技术实现端口复用
  ☆1Updated 3 years ago
• wonderkun / crawler
  利用github action定时爬取先知、安全客等的文章进行保存
  ☆58Updated 3 years ago
• tr3ee / CVE-2021-4204
  CVE-2021-4204: Linux Kernel eBPF Local Privilege Escalation
  ☆61Updated 3 years ago
• TomAPU / WAF-rules
  ☆22Updated 5 years ago
• bytedance / Elkeid-HUB
  Elkeid HUB is a rule/event processing engine maintained by the Elkeid Team that supports streaming/offline (not yet supported by the comm…
  ☆94Updated last year
• chaitin / systracer
  SysTracer: Linux 系统活动跟踪器
  ☆31Updated 2 years ago
• theSecHunter / Hades-Linux
  Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).
  ☆24Updated 3 months ago
• h4ckm310n / Container-Vulnerability-Exploit
  容器安全漏洞的分析与复现
  ☆151Updated last year
• leveryd / ebpf-app
  ☆23Updated 2 years ago
• rcx / shellcode_encoder
  x64 printable shellcode encoder
  ☆155Updated 5 years ago
• driverxdw / Felicia
  HIDS/EDR Demo
  ☆15Updated 4 years ago
• cbwang505 / poolfengshui
  笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配问题,工具包括适配驱动和利用程序两部分组成,实现了在Windows 10 19H1之后任意版本包…
  ☆77Updated 3 years ago
• ycdxsb / Windows_Security_Resources
  Windows Security Resources
  ☆64Updated 3 years ago
• De4dCr0w / Linux-kernel-EoP-exp
  Linux kernel EoP exp
  ☆75Updated 4 years ago