Alternatives and similar repositories for Unhide

Users that are interested in Unhide are comparing it to the libraries listed below

• fox-it / OpenSSH-Session-Key-Recovery
  Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.
  ☆91Updated last year
• theSecHunter / Hades
  Hades is an cross-platform HIDS with kernel-space data collection.
  ☆47Updated 2 years ago
• chaitin / systracer
  SysTracer: Linux 系统活动跟踪器
  ☆32Updated 2 years ago
• veo / vbackdoor
  Hide process,port,self under Linux using the ld_preload
  ☆174Updated 4 years ago
• memoryforensics1 / Vol3xp
  Volatility Explorer Suit
  ☆66Updated 2 years ago
• Qihoo360 / Luwak
  利用预训练语言模型从非结构化威胁报告中提取 MITRE ATT&CK TTP 信息
  ☆75Updated 2 years ago
• fox-it / OpenSSH-Network-Parser
  Project to decrypt and parse SSH traffic
  ☆68Updated 5 years ago
• chenkaie / junkcode
  Junk code - needless to explain
  ☆77Updated 4 years ago
• sourque / louis
  Linux EDR written in Golang and based on eBPF.
  ☆244Updated 3 years ago
• theSecHunter / Hades-Linux
  Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).
  ☆28Updated 11 months ago
• tlsdump / tlsdump
  dump Transfer Layer Security data without certificate
  ☆71Updated last year
• mempodippy / cub3
  Proof of concept for LD_PRELOAD malware that uses extended attributes to protect files.
  ☆119Updated 9 years ago
• akkuman / EvilEye
  A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.
  ☆163Updated 3 years ago
• RedDrip7 / Log4Shell_CVE-2021-44228_related_attacks_IOCs
  ☆45Updated 3 years ago
• Esonhugh / sshd_backdoor
  /root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.
  ☆341Updated 2 years ago
• Magentron / chkrootkit
  This program locally checks for signs of a rootkit. 'Forked' to fix false-positive for SucKIT rootkit
  ☆242Updated 3 years ago
• YJesus / Unhide-NG
  Next generation !
  ☆68Updated 4 years ago
• Abyssal-Fish-Technology / ly_analyser
  ☆31Updated last year
• Blue-Team-CN / Attack-traffic-PACPs
  攻击流量包，辅助安全运营/分析人员，HVV蓝队工程师开展流量攻击研判工作
  ☆68Updated 2 years ago
• RF-CTI / SANS-summit
  ☆30Updated 2 years ago
• safest-place / ExploitPcapCollection
  collect some exploit traffic pcap
  ☆87Updated 8 months ago
• 3gstudent / 3gstudent.github.io
  Blog
  ☆75Updated 2 years ago
• Cisco-Talos / Re2Pcap
  ☆58Updated last year
• WBGlIl / CS_Decrypt
  ☆152Updated 5 years ago
• NexusFuzzy / CobaltSpam
  Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons
  ☆371Updated last month
• h4sh5 / decrypt-winrm
  decrypting winrm traffic using password/ntlm hash, repo fork from https://gist.github.com/jborean93/d6ff5e87f8a9f5cb215cd49826523045/
  ☆35Updated 2 months ago
• Z3ratu1 / geacon_plus
  CobaltStrike beacon written in golang
  ☆454Updated 2 years ago
• ainrm / cobaltstrike-suricata-rules
  17条检测cobaltstrike的suricata-ids规则
  ☆67Updated 3 years ago
• Psmths / openssh-backdoor
  Experimental and sneaky backdoor patch for OpenSSH Portable.
  ☆25Updated 3 years ago
• Cyb3r-Techie / CVE-Tracker
  With the help of this automated script, you will never lose track of recently released CVEs.
  ☆53Updated 3 years ago