chriskaliX / HadesLinks
Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
☆296Updated 8 months ago
Alternatives and similar repositories for Hades
Users that are interested in Hades are comparing it to the libraries listed below
Sorting:
- A Linux Host-based Intrusion Detection System based on eBPF.☆442Updated last year
- Elkeid HUB is a rule/event processing engine maintained by the Elkeid Team that supports streaming/offline (not yet supported by the comm…☆98Updated 2 years ago
- Inject ELF into remote process☆150Updated last year
- Enterprise Security Data Pipeline Platform (SDPP) with Integrated Real-Time Threat Detection Engine☆34Updated this week
- vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that…☆382Updated last week
- Linux EDR written in Golang and based on eBPF.☆242Updated 3 years ago
- GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测☆77Updated 5 months ago
- 一个由长亭自研,直观而可扩展的容器安全 SDK☆122Updated 2 years ago
- 通过Linux netlink NETLINK_CONNECTOR 协议实时进行监控本机进程情况。☆13Updated 5 years ago
- a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数,避开基于execve系统调用监控的命令日志☆242Updated 6 years ago
- 使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构,agent 部分使用go 开发而成, 会把采集的数据写入到kafka里面,由后端的规则引擎(go开发而成)消费,配置部分以及agent存活使用etcd。☆19Updated 4 years ago
- vArmor-ebpf is a specialized project dedicated to maintaining the BPF code utilized by vArmor.☆35Updated 3 weeks ago
- Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置☆141Updated 5 years ago
- tcppc: A simple honeypot to capture TCP/TLS/UDP payloads on ALL ports.☆35Updated 4 years ago
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆599Updated 4 years ago
- SysTracer: Linux 系统活动跟踪器☆33Updated 2 years ago
- k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.☆291Updated 3 years ago
- Learning eBPF from zero to hero☆37Updated last year
- 专注于JVM的运行时防御系统RASP☆284Updated last year
- 《云原生安全:攻防实践与体系构建》资料仓库☆758Updated 2 years ago
- SQL injection detection engine built on of SQL tokenizing and syntax analysis written in C☆61Updated 4 years ago
- An awesome reverse engine for xray poc. | 一个自动化根据 xray poc 生成对应靶站的工具☆423Updated 2 years ago
- 毕方智能云沙箱(Bold-Falcon)是一个 开源的自动化恶意软件分析系统;☆147Updated 2 years ago
- 🌶 一些和容器化/容器编排/服务网格等技术相关的安全代码片段[自用备份]☆82Updated 4 years ago
- 《eBPF 云原生安全:原理与实践》书中示例程序的完整源代码☆105Updated 8 months ago
- ATT&CK 中文版☆57Updated 5 months ago
- Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)☆31Updated 3 years ago
- ☆171Updated 2 years ago
- Go Agent is a go application probe of DongTai IAST, which collects method invocation data during runtime of Go application by dynamic hoo…☆42Updated 6 months ago
- A golang ebpf libary based on cilium/ebpf and datadog/ebpf.☆339Updated 2 months ago