Alternatives and similar repositories for Linux-Sensor:

Users that are interested in Linux-Sensor are comparing it to the libraries listed below

• jethrogb / ssltrace
  ssltrace hooks an application's SSL libraries to record keying data of all SSL connections
  ☆94Updated 9 years ago
• taviso / iknowthis
  iknowthis Linux SystemCall Fuzzer
  ☆20Updated 5 years ago
• iagox86 / dnsmasq-fuzzing
  ☆24Updated 9 years ago
• juergh / lqs2mem
  Convert libvirt-QEMU-save (LQS) files to raw memory files
  ☆37Updated last year
• 0xcpu / bonomen
  BONOMEN - Hunt for Malware Critical Process Impersonation
  ☆47Updated 4 years ago
• caesar0301 / pcapdpi
  Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…
  ☆23Updated 8 years ago
• droberson / ELFappend
  PoC to append and extract data at the end of an ELF file
  ☆20Updated 7 years ago
• D4-project / sensor-d4-tls-fingerprinting
  Extract TLS certificates from pcap files or network interfaces, fingerprint TLS client/server interactions with ja3/ja3s
  ☆38Updated 5 years ago
• jedisct1 / iptrap
  A simple, but damn fast sinkhole
  ☆63Updated last month
• travisbgreen / intel_amt_honeypot
  intel amt honeypot
  ☆18Updated 7 years ago
• 7h3rAm / pcapedit
  An Interactive Pcap Editor (based on Scapy)
  ☆23Updated 4 years ago
• elfmaster / ecfs_exec
  Be able to execute memory snapshots so they can start running where they left off.
  ☆35Updated 9 years ago
• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆42Updated 8 years ago
• elfmaster / taskverse
  A tool like /bin/ps but uses /proc/kcore for walking the tasklist; this finds hidden processes
  ☆57Updated 9 years ago
• MerlijnWajer / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆72Updated 5 years ago
• isc-projects / dnsgen
  DNS packet generator
  ☆42Updated 5 months ago
• fuhry / linux-memory-dumper
  Script that dumps running process memory from Linux systems using /proc.
  ☆79Updated 11 years ago
• oblique / code-injector
  runtime code injector for Linux
  ☆27Updated 13 years ago
• jjyg / ssh_decoder
  ☆35Updated 12 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 3 months ago
• ice799 / injectso64
  Stealth's 64bit injectso port
  ☆74Updated 14 years ago
• ouspg / trytls
  Does ​your​ library check TLS certificates properly?
  ☆78Updated last year
• elceef / dhcpf
  Passive DHCP fingerprinting implementation
  ☆50Updated 8 years ago
• landlock-lsm / linux
  Linux kernel - See Landlock issues
  ☆35Updated last month
• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆74Updated 7 years ago
• devttys0 / botox
  SIGSTOPing ELF binaries since 0x7E1
  ☆51Updated 5 months ago
• NegativeMjark / ssl-intercept-ldpreload
  LD_PRELOAD library for intercepting the plain text of SSL connections made with openssl
  ☆24Updated 10 years ago
• twosixlabs / V3SPA
  Verification Validation and Visualization of Security Policy Abstractions
  ☆43Updated last year
• Yara-Rules / r2yara
  r2yara - Module for Yara using radare2 information
  ☆34Updated last year
• CERN-CERT / activity_klog
  Ccollection of Linux loadable kernel modules aimed to logs any user action
  ☆25Updated 5 years ago