Alternatives and similar repositories for snuffy

Users that are interested in snuffy are comparing it to the libraries listed below

• foniod / foniod
  Data first monitoring agent using (e)BPF, built on RedBPF
  ☆407Updated 2 years ago
• DavidBuchanan314 / libleakmydata
  A simple LD_PRELOAD library to disable SSL certificate verification. Inspired by libeatmydata.
  ☆179Updated 6 years ago
• polaris64 / syswall
  Work in progress firewall for Linux syscalls, written in Rust
  ☆126Updated last year
• izabera / zeromaps
  A "living" Linux process with no memory
  ☆344Updated 4 years ago
• gamozolabs / orange_slice
  A research kernel and hypervisor attempting to get fully deterministic emulation with minimum performance cost
  ☆526Updated 4 years ago
• anelson / tracers
  Ergonomic Rust bindings for instrumenting Rust apps with high performance probes using SystemTap, DTrace, etc
  ☆219Updated 5 years ago
• harporoeder / ebpfsnitch
  Linux Application Level Firewall based on eBPF and NFQUEUE.
  ☆701Updated last year
• MantechUser / aes-finder
  Utility to find AES keys in running processes
  ☆335Updated 2 years ago
• MarginResearch / cannoli
  High-performance QEMU memory and instruction tracing
  ☆541Updated 10 months ago
• bolinfest / opensnoop-native
  opensnoop in pure C using eBPF
  ☆100Updated last month
• benjojo / hot-clone
  Progressively image a mounted disk correctly without corruption
  ☆309Updated 3 years ago
• evilsocket / ebpf-process-anomaly-detection
  Process behaviour anomaly detection using eBPF and unsupervised-learning Autoencoders
  ☆131Updated 2 years ago
• trailofbits / krf
  A kernelspace syscall interceptor and randomized faulter
  ☆354Updated 6 months ago
• majek / fluxcapacitor
  The engine that powers DeLorean!
  ☆835Updated 5 years ago
• netanel01 / ctf-writeups
  ☆72Updated 5 years ago
• rubrikinc / wachy
  A UI for eBPF-based performance debugging
  ☆571Updated 2 years ago
• eeriedusk / knockles
  eBPF Port Knocking Tool
  ☆233Updated last year
• woodruffw / steg86
  Hiding messages in x86 programs using semantic duals
  ☆295Updated last week
• DavidBuchanan314 / dlinject
  Inject a shared library (i.e. arbitrary code) into a live linux process, without ptrace
  ☆787Updated 3 months ago
• iqlusioninc / sear
  Signed/Encrypted ARchive: always-encrypted tar-like archive tool with optional signature support
  ☆356Updated 2 years ago
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆123Updated 2 years ago
• guardicore / IPCDump
  ☆246Updated 4 years ago
• redcanaryco / oxidebpf
  A Rust library for managing eBPF programs.
  ☆120Updated last year
• quarkslab / peetch
  An eBPF playground
  ☆206Updated last year
• benjojo / ssh-key-confirmer
  Test ssh login key acceptance without having the private key
  ☆218Updated 3 years ago
• gaul / awesome-ld-preload
  List of resources related to LD_PRELOAD, a mechanism for changing application behavior at run-time
  ☆895Updated last year
• trishume / telefork
  Like fork() but teleports the forked process to a different computer!
  ☆602Updated 3 years ago
• netspooky / pdiff
  Binary Protocol Differ
  ☆118Updated 4 years ago
• kpcyrd / rshijack
  TCP connection hijacker, Rust rewrite of shijack
  ☆503Updated 7 months ago
• genuinetools / bpfd
  Framework for running BPF programs with rules on Linux as a daemon. Container aware.
  ☆477Updated 4 years ago