Alternatives and similar repositories for Unhide

Users that are interested in Unhide are comparing it to the libraries listed below

• fox-it / OpenSSH-Session-Key-Recovery
  Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.
  ☆90Updated last year
• Qihoo360 / Luwak
  利用预训练语言模型从非结构化威胁报告中提取 MITRE ATT&CK TTP 信息
  ☆74Updated 2 years ago
• veo / vbackdoor
  Hide process,port,self under Linux using the ld_preload
  ☆172Updated 3 years ago
• chaitin / systracer
  SysTracer: Linux 系统活动跟踪器
  ☆33Updated 2 years ago
• fox-it / OpenSSH-Network-Parser
  Project to decrypt and parse SSH traffic
  ☆66Updated 4 years ago
• memoryforensics1 / Vol3xp
  Volatility Explorer Suit
  ☆66Updated 2 years ago
• sourque / louis
  Linux EDR written in Golang and based on eBPF.
  ☆244Updated 3 years ago
• theSecHunter / Hades
  Hades is an cross-platform HIDS with kernel-space data collection.
  ☆47Updated 2 years ago
• Magentron / chkrootkit
  This program locally checks for signs of a rootkit. 'Forked' to fix false-positive for SucKIT rootkit
  ☆240Updated 2 years ago
• YJesus / Unhide-NG
  Next generation !
  ☆68Updated 4 years ago
• Cyb3r-Techie / CVE-Tracker
  With the help of this automated script, you will never lose track of recently released CVEs.
  ☆52Updated 3 years ago
• tlsdump / tlsdump
  dump Transfer Layer Security data without certificate
  ☆71Updated 11 months ago
• tstillz / webshell-analyzer
  Web shell scanner and analyzer.
  ☆112Updated 2 years ago
• CERTCC / labyrinth
  Come inside, and have a nice cup of tea.
  ☆108Updated 4 months ago
• G4rb3n / Script-Ganker
  恶意脚本检测分类工具
  ☆40Updated 4 years ago
• Cisco-Talos / Re2Pcap
  ☆55Updated last year
• alex-sector / dns2tcp
  ☆202Updated last year
• Blue-Team-CN / Attack-traffic-PACPs
  攻击流量包，辅助安全运营/分析人员，HVV蓝队工程师开展流量攻击研判工作
  ☆67Updated 2 years ago
• akkuman / EvilEye
  A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.
  ☆163Updated 3 years ago
• mempodippy / cub3
  Proof of concept for LD_PRELOAD malware that uses extended attributes to protect files.
  ☆119Updated 9 years ago
• RF-CTI / SANS-summit
  ☆30Updated 2 years ago
• theSecHunter / Hades-Linux
  Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).
  ☆26Updated 9 months ago
• chenkaie / junkcode
  Junk code - needless to explain
  ☆77Updated 4 years ago
• Esonhugh / sshd_backdoor
  /root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.
  ☆340Updated 2 years ago
• RedDrip7 / Log4Shell_CVE-2021-44228_related_attacks_IOCs
  ☆46Updated 3 years ago
• safest-place / ExploitPcapCollection
  collect some exploit traffic pcap
  ☆86Updated 6 months ago
• PowerLZY / Bold-Falcon
  毕方智能云沙箱(Bold-Falcon)是一个开源的自动化恶意软件分析系统;
  ☆150Updated 2 years ago
• ainrm / cobaltstrike-suricata-rules
  17条检测cobaltstrike的suricata-ids规则
  ☆67Updated 3 years ago
• decalage2 / oledump-contrib
  The oledump-contrib repository contains plugins and enhancements for the oledump tool published by Didier Stevens.
  ☆55Updated 9 years ago
• ByteSecLabs / ja3-ja3s-combo
  High fidelity JA3 & JA3S combinations for known botnets and alike
  ☆11Updated 6 years ago