Alternatives and similar repositories for Unhide

Users that are interested in Unhide are comparing it to the libraries listed below

• fox-it / OpenSSH-Session-Key-Recovery
  Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.
  ☆94Updated last year
• veo / vbackdoor
  Hide process,port,self under Linux using the ld_preload
  ☆172Updated 4 years ago
• theSecHunter / Hades
  Hades is an cross-platform HIDS with kernel-space data collection.
  ☆49Updated 2 years ago
• fox-it / OpenSSH-Network-Parser
  Project to decrypt and parse SSH traffic
  ☆70Updated 5 years ago
• sourque / louis
  Linux EDR written in Golang and based on eBPF.
  ☆244Updated 3 years ago
• chaitin / systracer
  SysTracer: Linux 系统活动跟踪器
  ☆33Updated 3 years ago
• RedDrip7 / Log4Shell_CVE-2021-44228_related_attacks_IOCs
  ☆45Updated 4 years ago
• Magentron / chkrootkit
  This program locally checks for signs of a rootkit. 'Forked' to fix false-positive for SucKIT rootkit
  ☆245Updated 3 years ago
• Qihoo360 / Luwak
  利用预训练语言模型从非结构化威胁报告中提取 MITRE ATT&CK TTP 信息
  ☆75Updated 2 years ago
• YJesus / Unhide-NG
  Next generation !
  ☆69Updated 5 years ago
• memoryforensics1 / Vol3xp
  Volatility Explorer Suit
  ☆66Updated 3 years ago
• mempodippy / cub3
  Proof of concept for LD_PRELOAD malware that uses extended attributes to protect files.
  ☆119Updated 9 years ago
• tlsdump / tlsdump
  dump Transfer Layer Security data without certificate
  ☆71Updated last year
• idealeer / xmap
  XMap is a fast network scanner designed for performing Internet-wide IPv6 & IPv4 network research scanning.
  ☆468Updated last month
• akkuman / EvilEye
  A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.
  ☆162Updated 3 years ago
• Esonhugh / sshd_backdoor
  /root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.
  ☆346Updated 2 years ago
• safest-place / ExploitPcapCollection
  collect some exploit traffic pcap
  ☆91Updated 10 months ago
• Blue-Team-CN / Attack-traffic-PACPs
  攻击流量包，辅助安全运营/分析人员，HVV蓝队工程师开展流量攻击研判工作
  ☆68Updated 2 years ago
• chenkaie / junkcode
  Junk code - needless to explain
  ☆78Updated 4 years ago
• PowerLZY / Bold-Falcon
  毕方智能云沙箱(Bold-Falcon)是一个开源的自动化恶意软件分析系统;
  ☆156Updated 2 years ago
• Cisco-Talos / Re2Pcap
  ☆60Updated last year
• theSecHunter / Hades-Linux
  Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).
  ☆28Updated last year
• G4rb3n / Script-Ganker
  恶意脚本检测分类工具
  ☆40Updated 5 years ago
• 3gstudent / 3gstudent.github.io
  Blog
  ☆77Updated 2 years ago
• Abyssal-Fish-Technology / ly_analyser
  ☆32Updated last year
• RF-CTI / SANS-summit
  ☆30Updated 2 years ago
• CERTCC / labyrinth
  Come inside, and have a nice cup of tea.
  ☆109Updated 8 months ago
• Psmths / openssh-backdoor
  Experimental and sneaky backdoor patch for OpenSSH Portable.
  ☆24Updated 4 years ago
• Freakboy / Godzilla
  Godzilla source code
  ☆84Updated 5 years ago
• wecooperate / iMonitorSDK
  The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能， 而不用关心底层…
  ☆371Updated 11 months ago