Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.
☆29Sep 10, 2025Updated 6 months ago
Alternatives and similar repositories for rootkit-detection-ebpf-time-trace
Users that are interested in rootkit-detection-ebpf-time-trace are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hardened your Windows OS against forensics analysis☆25Nov 27, 2024Updated last year
- ☆13Jul 11, 2024Updated last year
- An IDA plugin that uses language models to speed up binary analysis.☆45Nov 23, 2025Updated 4 months ago
- ☆21Mar 2, 2024Updated 2 years ago
- ☆24Feb 18, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Academic research rootkit using ftrace-hooking to hide files and processes via magic word or user/group. Tested until Linux 6.11.☆46Jun 5, 2025Updated 9 months ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆28Apr 13, 2023Updated 2 years ago
- linux ebpf backdoor demo☆12Nov 20, 2024Updated last year
- Terminate AV/EDR processes by exploiting the vulnerable NsecSoft driver☆33Sep 15, 2025Updated 6 months ago
- Demonstrating how you can take an action to your intrusions detected by Falco using OpenFaaS functions�☆26Mar 24, 2021Updated 5 years ago
- This is the repository for the code and artifacts related to the CCS2022 paper: C2C: Fine-grained Configuration-driven System Call Filter…☆11Nov 4, 2022Updated 3 years ago
- ☆17Mar 22, 2019Updated 7 years ago
- Linux BPF plugins for Volatility3☆23Jan 19, 2024Updated 2 years ago
- Rust Linux Kernel Module designed for LKM rootkit detection☆60Mar 12, 2025Updated last year
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Open Source eBPF Malware Analysis Framework☆54Oct 20, 2024Updated last year
- Some stuff for PHD2021☆14May 21, 2025Updated 10 months ago
- Waffle is a library for integrating a Web Application Firewall (WAF) into Go applications.☆18Mar 16, 2026Updated last week
- Debian10-Linux4.19 Hook sys_call_table By IDT☆11May 9, 2020Updated 5 years ago
- eBPF Programs☆66Jul 3, 2025Updated 8 months ago
- Collection of datasets for network research.☆14Jul 26, 2020Updated 5 years ago
- A Windows tool that converts LDIF files to BloodHound CE☆31Dec 20, 2025Updated 3 months ago
- Enrich your investigations on IPs, Domains etc. with OSINT☆60Apr 4, 2024Updated last year
- For BambooFox☆14Sep 25, 2016Updated 9 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- RNNs for sql-injection detection 🔍. built in python with tensorflow and keras☆12Sep 14, 2024Updated last year
- Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.☆15Jul 30, 2022Updated 3 years ago
- Single Master - Multi Worker K8S cluster for learning and development☆15Jul 6, 2020Updated 5 years ago
- ☆10Jan 21, 2022Updated 4 years ago
- python3 version of cloacked-pixel.☆11Oct 8, 2022Updated 3 years ago
- This repository provides a comprehensive Digital Footprint Checklist to help individuals manage their online presence and enhance privacy…☆17Dec 25, 2024Updated last year
- Shows a tiny bar in your tmux statusline with the current CPU usage☆14Aug 25, 2017Updated 8 years ago
- Vulnerable application for security issues demo☆17Jan 18, 2019Updated 7 years ago
- A frozen version of angr for the SAILR paper☆16Sep 4, 2024Updated last year
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- Kiddy - (linux) kernel identity spoofer☆15Mar 18, 2024Updated 2 years ago
- A Security Operation Tool Based on Large Language Models 基于大语言模型的安全运营工具☆23Mar 20, 2024Updated 2 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- Mishky's AD Range & The Escalation Path from Hell, Version 1.1☆12May 7, 2025Updated 10 months ago
- misc scripts/utils that I've written that aren't deserving of own repos.☆14Aug 18, 2021Updated 4 years ago
- ☆13Jan 28, 2026Updated last month
- Template for Linux Kernel development on Apple Silicon (aarch64) using VS Code☆17Mar 17, 2024Updated 2 years ago