HoneProject / Linux-SensorLinks
Correlate packets to the responsible processes in Linux systems. Diagnose connections by adding process information.
☆103Updated 10 years ago
Alternatives and similar repositories for Linux-Sensor
Users that are interested in Linux-Sensor are comparing it to the libraries listed below
Sorting:
- DNS packet generator☆46Updated last year
- An Interactive Pcap Editor (based on Scapy)☆23Updated 4 years ago
- iknowthis Linux SystemCall Fuzzer☆20Updated 6 years ago
- ssltrace hooks an application's SSL libraries to record keying data of all SSL connections☆95Updated 10 years ago
- BGP Route Leaks Detection☆71Updated 6 years ago
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23Updated 9 years ago
- Replay HTTP and HTTPS requests from a PCAP based on TLS Master Secrets.☆95Updated 3 years ago
- A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.☆32Updated 10 months ago
- Implementation of the SMM rootkit "The Watcher"☆128Updated 3 years ago
- Live SSH/SSL/TLS decryption - extraction of secret keys from live process memory☆105Updated 9 years ago
- IPMI stuff from DARPA work☆74Updated 2 years ago
- ☆24Updated 10 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- ☆92Updated 7 years ago
- My Packet Captures, Quagga Tutorial, and Cisco Reversing.☆28Updated 7 years ago
- FIX (Financial Information eXchange) protocol fuzzer☆24Updated 3 years ago
- Whitelisting LD_PRELOAD libraries using LD_AUDIT☆63Updated 3 years ago
- (Linux Kernel) Stack Monitoring Tool☆45Updated 3 years ago
- Rootkit Detector for UNIX☆61Updated 2 years ago
- The Alternative Fileless File System☆57Updated 6 years ago
- Linux-KVM with rVMI extensions☆22Updated 7 years ago
- dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software☆55Updated 5 years ago
- A python implementation of a grep friendly ftrace wrapper☆80Updated 6 years ago
- Historical Tracking of MAC Address Assignments☆33Updated this week
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated 2 years ago
- Virtual machine introspection library based on libvmi - parts of this work have been funded by Deutsche Forschungsgemeinschaft (DFG) – pr…☆30Updated 3 years ago
- Verification Validation and Visualization of Security Policy Abstractions☆44Updated 2 years ago
- ☆36Updated 12 years ago
- Be able to execute memory snapshots so they can start running where they left off.☆36Updated 10 years ago