TomasPhilippart / ebpfangelLinks
π Ransomware Detection using Machine Learning with eBPF for Linux.
β68Updated 10 months ago
Alternatives and similar repositories for ebpfangel
Users that are interested in ebpfangel are comparing it to the libraries listed below
Sorting:
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPFβ166Updated last year
- bpflock - eBPF driven security for locking and auditing Linux machinesβ150Updated 3 years ago
- β89Updated last year
- Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG Appβ¦β68Updated 6 months ago
- Red Canary's eBPF Sensorβ111Updated 4 months ago
- A collection of bypasses and exploits for eBPF-based cloud security.β25Updated last year
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkitsβ137Updated 2 years ago
- Publications from the eBPF foundationβ28Updated last month
- Linux Kernel Runtime Integrity with eBPFβ183Updated last year
- This repository contains the code for the paper "A flow-based IDS using Machine Learning in eBPF", Contact: Maximilian Bachlβ105Updated 2 months ago
- Elastic's eBPFβ69Updated 3 weeks ago
- β84Updated this week
- io_uring based rootkitβ239Updated 5 months ago
- Use eBPF to inject chaos into local processesβ65Updated last year
- An eBPF playgroundβ208Updated last year
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.β74Updated 2 years ago
- Trace deep kernel events through eBPF and lsm hooksβ39Updated 4 years ago
- A process level network security monitoring and enforcement project for Kubernetes, using eBPFβ44Updated 5 years ago
- https://github.com/eunomia-bpf homepage, documents and blogsβ121Updated last week
- Process behaviour anomaly detection using eBPF and unsupervised-learning Autoencodersβ133Updated 3 years ago
- A file system events notifier based on eBPFβ73Updated 2 years ago
- Example BPF program with LSM hooksβ33Updated 4 years ago
- Simple root privilege escalation detection using eBPF πβ34Updated 2 weeks ago
- Open Source eBPF Malware Analysis Frameworkβ52Updated last year
- Making containers more secure with eBPF and Linux Security Modules (LSM)β230Updated last year
- monitor and protect SSH sessions with eBPFβ70Updated 4 years ago
- This tool have the power to hide any PID/directory in the Linux kernelβ29Updated last year
- Falco rule repositoryβ138Updated last week
- eBPF Memory Dump Toolβ87Updated last month
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable thanβ¦β67Updated 3 years ago