Alternatives and similar repositories for Unhide

Users that are interested in Unhide are comparing it to the libraries listed below

• YJesus / Unhide-NG
  Next generation !
  ☆66Updated 4 years ago
• Magentron / chkrootkit
  This program locally checks for signs of a rootkit. 'Forked' to fix false-positive for SucKIT rootkit
  ☆237Updated 2 years ago
• mempodippy / cub3
  Proof of concept for LD_PRELOAD malware that uses extended attributes to protect files.
  ☆118Updated 9 years ago
• veo / vbackdoor
  Hide process,port,self under Linux using the ld_preload
  ☆170Updated 3 years ago
• chenkaie / junkcode
  Junk code - needless to explain
  ☆77Updated 3 years ago
• Error996 / bdvl
  bdvl
  ☆113Updated 3 years ago
• Cisco-Talos / Re2Pcap
  ☆54Updated 11 months ago
• hardenedvault / ved
  Vault Exploit Defense
  ☆125Updated 9 months ago
• fox-it / OpenSSH-Session-Key-Recovery
  Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.
  ☆89Updated last year
• fox-it / OpenSSH-Network-Parser
  Project to decrypt and parse SSH traffic
  ☆66Updated 4 years ago
• tlsdump / tlsdump
  dump Transfer Layer Security data without certificate
  ☆71Updated 9 months ago
• theSecHunter / Hades-Windows
  Hades HIDS/HIPS for Windows
  ☆281Updated 3 weeks ago
• akkuman / EvilEye
  A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.
  ☆159Updated 2 years ago
• knownsec / PortForward
  The port forwarding tool developed by Golang solves the problem that the internal and external networks cannot communicate in certain sce…
  ☆144Updated 4 years ago
• chaitin / systracer
  SysTracer: Linux 系统活动跟踪器
  ☆32Updated 2 years ago
• sourque / louis
  Linux EDR written in Golang and based on eBPF.
  ☆241Updated 3 years ago
• RedDrip7 / Log4Shell_CVE-2021-44228_related_attacks_IOCs
  ☆45Updated 3 years ago
• rjbhide / wireshark-forensics-plugin
  ☆96Updated 3 years ago
• Cyb3r-Techie / CVE-Tracker
  With the help of this automated script, you will never lose track of recently released CVEs.
  ☆53Updated 3 years ago
• Esonhugh / sshd_backdoor
  /root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.
  ☆338Updated 2 years ago
• memoryforensics1 / Vol3xp
  Volatility Explorer Suit
  ☆65Updated 2 years ago
• yaoyumeng / adore-ng
  linux rootkit adapted for 2.6 and 3.x
  ☆212Updated 9 years ago
• woanware / woanware.github.io
  ☆33Updated 10 years ago
• RoomaSec / RmEye
  戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑
  ☆518Updated last year
• microsoft / SysinternalsEBPF
  The Linux port of the Sysinternals Sysmon tool.
  ☆263Updated 3 months ago
• DidierStevens / Beta
  Beta versions of my software
  ☆255Updated 2 weeks ago
• CERTCC / labyrinth
  Come inside, and have a nice cup of tea.
  ☆104Updated last month
• ggrandes-clones / pmon
  Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)
  ☆31Updated 3 years ago
• KDPryor / LinuxVolProfiles
  Volatility Linux Profiles
  ☆27Updated 10 years ago
• theSecHunter / Hades
  Hades is an cross-platform HIDS with kernel-space data collection.
  ☆45Updated 2 years ago