citronneur / blindssl
Disable SSL certificate verification for all binaries that use libssl
☆47Updated 2 years ago
Related projects: ⓘ
- Example program using eBPF to log data being based in using shell pipes☆40Updated 3 years ago
- Dectect syscall hooking using eBPF☆139Updated last year
- POC for Phantom Attack☆79Updated 2 years ago
- ☆82Updated 2 months ago
- Harness for the Linux kernel eBPF verifier☆32Updated 2 years ago
- Portable (static / old glibc linked) Linux binaries for red-team / blue-team☆14Updated 6 months ago
- Kubernetes offensive framework built in eBPF☆34Updated last year
- Alcatraz project for Black Hat USA 2021☆76Updated 3 years ago
- An eBPF detection program for CVE-2022-0847☆27Updated 2 years ago
- A ptrace-based TLS 1.2 master secret extractor for reverse engineering (PoC)☆23Updated 6 months ago
- CO-RE code for the Netdata eBPF plugin.☆11Updated 2 weeks ago
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆147Updated last week
- Trace deep kernel events through eBPF and lsm hooks☆32Updated 3 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆136Updated 2 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- A hacky tool for analysing linux kernel commits☆35Updated last year
- A collection of projects demonstrating various commandline cloaking techniques on Linux☆53Updated 2 years ago
- openssl tracer using eBPF☆13Updated 2 years ago
- Tools for analyzing Windows containers and break container's isolation☆27Updated 2 years ago
- PoC for CVE-2021-1056, related to GPU Container Security☆15Updated 3 years ago
- Test whether a container environment is vulnerable to container escapes via CVE-2022-0492☆46Updated 2 years ago
- Hacking the Linux kernel☆13Updated last year
- A file system events notifier based on eBPF☆54Updated last year
- Linux Kernel module-less implant (backdoor)☆64Updated 3 years ago
- Kernel Read Write Execute☆34Updated 3 weeks ago
- Pulled out Linux kernel code to run in userland so they could be targeted by AFL and KLEE☆19Updated 4 years ago
- socketrace is an eBPF-based tool to trace kernel socket events. License Apache 2.0 and GPL-2.0☆27Updated 7 months ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆120Updated last year
- Proof of concept exploit about OpenSSL signature_algorithms_cert DoS flaw (CVE-2020-1967)☆19Updated 3 months ago
- Checks for tpm vulnerabilities☆35Updated last year