airbus-cert / dirtypipe-ebpf_detection

Related projects ⓘ

Alternatives and complementary repositories for dirtypipe-ebpf_detection

• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 2 years ago
• io-tl / Mara
  Mara is a userland pty/tty sniffer
  ☆52Updated 10 months ago
• redcanaryco / ebpfmon
  ☆84Updated 4 months ago
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆43Updated last month
• hackerschoice / memexec
  Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection
  ☆77Updated 3 weeks ago
• ancat / egrets
  egrets monitors egress
  ☆45Updated 4 years ago
• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆16Updated 2 months ago
• ergot86 / itlb_poc
  iTLB multihit PoC
  ☆40Updated last year
• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆21Updated 3 years ago
• pathtofile / bpf-pipesnoop
  Example program using eBPF to log data being based in using shell pipes
  ☆40Updated 3 years ago
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆17Updated 3 months ago
• io-tl / degu-lib
  stealth userland kit that doesn't use sys_clone/sys_execve call
  ☆28Updated 10 months ago
• Binary-Gecko / perf_PoC
  ☆13Updated 2 months ago
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 2 years ago
• iamalsaher / CVE-POCs
  My attempt at writing exploit POCs for various CVEs
  ☆16Updated 4 years ago
• nickswang / kubekit
  kubernetes rootkit
  ☆28Updated 11 months ago
• taviso / scanlimits
  Tool to examine the behaviour of setuid binaries under constrained limits.
  ☆62Updated 3 years ago
• synacktiv / io_uring_scanner
  io_uring based network scanner written in Rust
  ☆43Updated last year
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 3 years ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated last year
• magicsword-io / bootloaders
  bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…
  ☆48Updated last year
• roddux / germy
  GERMY is a Linux Kernel n-day in the N_GSM line discipline
  ☆44Updated 5 months ago
• Peco602 / rusthunter
  RustHunter is a modular incident response framework based on Rust and Ansible to build and compare environmental baselines.
  ☆17Updated 2 years ago
• moloch-- / godns
  The God Name Server
  ☆29Updated 2 months ago
• krisnova / kush
  Kubernetes Unhinged Shell 😎
  ☆45Updated 2 years ago
• trustedsec / VerifyELF
  ☆23Updated 6 months ago
• therealunicornsecurity / tricard
  Tricard - Malware Sandbox Fingerprinting
  ☆19Updated 11 months ago
• 0xdea / backdoo-rs
  A simple Meterpreter stager written in Rust.
  ☆28Updated 2 months ago