airbus-cert / dirtypipe-ebpf_detectionLinks
An eBPF detection program for CVE-2022-0847
☆28Updated 3 years ago
Alternatives and similar repositories for dirtypipe-ebpf_detection
Users that are interested in dirtypipe-ebpf_detection are comparing it to the libraries listed below
Sorting:
- ☆89Updated last year
- A collection of projects demonstrating various commandline cloaking techniques on Linux☆59Updated 3 years ago
- Sandfly Linux Stealth Rootkit Decloaking Utility☆102Updated 2 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆134Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPF☆181Updated last year
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆164Updated 11 months ago
- POC for Phantom Attack☆83Updated 3 years ago
- Red Canary's eBPF Sensor☆109Updated 2 months ago
- Dectect syscall hooking using eBPF☆160Updated 2 years ago
- ☆64Updated last year
- Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…☆89Updated last year
- Open Source eBPF Malware Analysis Framework☆49Updated 10 months ago
- Example program using eBPF to log data being based in using shell pipes☆41Updated 4 years ago
- Cisco ASA Software and ASDM Security Research☆85Updated 2 years ago
- YARI is an interactive debugger for YARA Language.☆88Updated 2 months ago
- egrets monitors egress☆46Updated 5 years ago
- ☆31Updated 3 years ago
- Mara is a userland pty/tty sniffer☆53Updated last year
- Execute MachO binaries in memory using CGo☆81Updated 4 years ago
- ☆47Updated 3 years ago
- eBPF Memory Dump Tool☆82Updated 2 months ago
- GERMY is a Linux Kernel n-day in the N_GSM line discipline☆49Updated last year
- Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.☆28Updated 3 years ago
- bdvl☆114Updated 3 years ago
- Scapy hands-on☆34Updated last year
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆30Updated 2 years ago
- Google Chrome Use After Free☆58Updated 3 years ago
- A collection of bypasses and exploits for eBPF-based cloud security.☆24Updated last year
- ugly code to check linux kernel memory and dump some internal structures☆47Updated 9 months ago