Alternatives and similar repositories for Unhide

Users that are interested in Unhide are comparing it to the libraries listed below

• veo / vbackdoor
  Hide process,port,self under Linux using the ld_preload
  ☆172Updated 4 years ago
• sourque / louis
  Linux EDR written in Golang and based on eBPF.
  ☆244Updated 3 years ago
• memoryforensics1 / Vol3xp
  Volatility Explorer Suit
  ☆65Updated 2 years ago
• theSecHunter / Hades
  Hades is an cross-platform HIDS with kernel-space data collection.
  ☆49Updated 2 years ago
• RedDrip7 / Log4Shell_CVE-2021-44228_related_attacks_IOCs
  ☆45Updated 4 years ago
• chaitin / systracer
  SysTracer: Linux 系统活动跟踪器
  ☆32Updated 3 years ago
• Esonhugh / sshd_backdoor
  /root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.
  ☆345Updated 2 years ago
• akkuman / EvilEye
  A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.
  ☆161Updated 3 years ago
• Cyb3r-Techie / CVE-Tracker
  With the help of this automated script, you will never lose track of recently released CVEs.
  ☆53Updated 3 years ago
• G4rb3n / Script-Ganker
  恶意脚本检测分类工具
  ☆40Updated 4 years ago
• fox-it / OpenSSH-Network-Parser
  Project to decrypt and parse SSH traffic
  ☆70Updated 5 years ago
• NexusFuzzy / CobaltSpam
  Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons
  ☆372Updated 2 months ago
• Qihoo360 / Luwak
  利用预训练语言模型从非结构化威胁报告中提取 MITRE ATT&CK TTP 信息
  ☆75Updated 2 years ago
• Magentron / chkrootkit
  This program locally checks for signs of a rootkit. 'Forked' to fix false-positive for SucKIT rootkit
  ☆243Updated 3 years ago
• CERTCC / labyrinth
  Come inside, and have a nice cup of tea.
  ☆109Updated 7 months ago
• tlsdump / tlsdump
  dump Transfer Layer Security data without certificate
  ☆71Updated last year
• YJesus / Unhide-NG
  Next generation !
  ☆69Updated 4 years ago
• fox-it / OpenSSH-Session-Key-Recovery
  Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.
  ☆93Updated last year
• 3gstudent / 3gstudent.github.io
  Blog
  ☆77Updated 2 years ago
• safest-place / ExploitPcapCollection
  collect some exploit traffic pcap
  ☆91Updated 9 months ago
• alphaSeclab / cobalt-strike
  Resources About Cobalt Strike. 100+ Tools And 200+ Posts.
  ☆259Updated 5 years ago
• mempodippy / cub3
  Proof of concept for LD_PRELOAD malware that uses extended attributes to protect files.
  ☆119Updated 9 years ago
• Freakboy / Godzilla
  Godzilla source code
  ☆84Updated 5 years ago
• chenkaie / junkcode
  Junk code - needless to explain
  ☆77Updated 4 years ago
• Blue-Team-CN / Attack-traffic-PACPs
  攻击流量包，辅助安全运营/分析人员，HVV蓝队工程师开展流量攻击研判工作
  ☆68Updated 2 years ago
• righel / gitlab-version-nse
  Nmap script to guess* a GitLab version.
  ☆247Updated last month
• WBGlIl / CS_Decrypt
  ☆152Updated 5 years ago
• RF-CTI / SANS-summit
  ☆30Updated 2 years ago
• ainrm / cobaltstrike-suricata-rules
  17条检测cobaltstrike的suricata-ids规则
  ☆68Updated 3 years ago
• decalage2 / oledump-contrib
  The oledump-contrib repository contains plugins and enhancements for the oledump tool published by Didier Stevens.
  ☆57Updated 9 years ago