Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.
☆29Sep 10, 2025Updated 8 months ago
Alternatives and similar repositories for rootkit-detection-ebpf-time-trace
Users that are interested in rootkit-detection-ebpf-time-trace are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Windows anti-forensics module☆25Apr 20, 2026Updated last month
- Detect strange memory regions and DLLs☆191Jan 20, 2022Updated 4 years ago
- 「⚔️」Ring 0 Rootkit for Linux Kernels x86/x86_64 5.x/6.x☆27Apr 10, 2025Updated last year
- ☆25Feb 18, 2025Updated last year
- This project process eBPF events into Prometheus metrics via a Go user-space application. A Grafana dashboard is included to visualize Ke…☆15Apr 22, 2025Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Terminate AV/EDR processes by exploiting the vulnerable NsecSoft driver☆32Sep 15, 2025Updated 8 months ago
- Demonstrating how you can take an action to your intrusions detected by Falco using OpenFaaS functions☆26Mar 24, 2021Updated 5 years ago
- ☆15Jan 30, 2025Updated last year
- 📡 Ease file sharing during pentest/CTF 🎸☆11May 18, 2026Updated last week
- Linux BPF plugins for Volatility3☆23Jan 19, 2024Updated 2 years ago
- DEFCON 33 Workshop - Open Source Malware 101 - Everything you always wanted to know about npm malware (and more)☆16Aug 8, 2025Updated 9 months ago
- Open Source eBPF Malware Analysis Framework☆55Oct 20, 2024Updated last year
- Rust Linux Kernel Module designed for LKM rootkit detection☆63Mar 12, 2025Updated last year
- Waffle is a library for integrating a Web Application Firewall (WAF) into Go applications.☆19May 16, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Some stuff for PHD2021☆14May 21, 2025Updated last year
- A statically typed version of pest.☆12Dec 2, 2025Updated 5 months ago
- Keklick - C2 Hunting, Reporting and Visualization Tool☆63Jul 23, 2025Updated 10 months ago
- A program for backup & restoration of btrfs subvolumes.☆13Mar 20, 2026Updated 2 months ago
- ☆11Dec 31, 2023Updated 2 years ago
- Source code of paper "EPScan: Automated Detection of Excessive RBAC Permissions in Kubernetes Applications"☆17May 14, 2025Updated last year
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆141Feb 28, 2023Updated 3 years ago
- ☆12Mar 24, 2018Updated 8 years ago
- Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.☆15Jul 30, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Enrich your investigations on IPs, Domains etc. with OSINT☆65Apr 4, 2024Updated 2 years ago
- Single Master - Multi Worker K8S cluster for learning and development☆15Jul 6, 2020Updated 5 years ago
- ☆10Jan 21, 2022Updated 4 years ago
- python3 version of cloacked-pixel.☆13Oct 8, 2022Updated 3 years ago
- This repository provides a comprehensive Digital Footprint Checklist to help individuals manage their online presence and enhance privacy…☆17Dec 25, 2024Updated last year
- fuzz the linux kernel bpf verifier☆82Oct 9, 2021Updated 4 years ago
- A frozen version of angr for the SAILR paper☆16Sep 4, 2024Updated last year
- Talk to a USB serial device without OS drivers!☆12Sep 7, 2022Updated 3 years ago
- Collection of my Security Blueprints & Guides☆52Oct 2, 2025Updated 7 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- An open-source tool for efficiently parsing x64dbg trace files (.trace32 & .trace64).☆45Jan 20, 2026Updated 4 months ago
- Kiddy - (linux) kernel identity spoofer☆16Mar 18, 2024Updated 2 years ago
- Tool for parsing hungarian laws (Rust version)☆12Aug 1, 2023Updated 2 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- misc scripts/utils that I've written that aren't deserving of own repos.☆14Aug 18, 2021Updated 4 years ago
- Mishky's AD Range & The Escalation Path from Hell, Version 1.1☆13May 7, 2025Updated last year
- Helpers for getting CHN up and running through the Quickstart guide☆12Mar 2, 2021Updated 5 years ago