eeriedusk / knocklesView external linksLinks
eBPF Port Knocking Tool
☆238Aug 23, 2023Updated 2 years ago
Alternatives and similar repositories for knockles
Users that are interested in knockles are comparing it to the libraries listed below
Sorting:
- nysm is a stealth post-exploitation container.☆265Jun 19, 2025Updated 7 months ago
- Linux Kernel Runtime Integrity with eBPF☆184Nov 23, 2023Updated 2 years ago
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,937Apr 7, 2024Updated last year
- Tools for offensive security of NetBackup infrastructures☆43Jun 6, 2023Updated 2 years ago
- Credentials Dumper for Linux using eBPF☆1,157Sep 9, 2024Updated last year
- ☆20May 30, 2025Updated 8 months ago
- ebpfkit is a rootkit powered by eBPF☆831Feb 28, 2023Updated 2 years ago
- An eBPF detection program for CVE-2022-0847☆29Jul 5, 2022Updated 3 years ago
- VBScript & VBA source-to-source deobfuscator with partial-evaluation☆80Aug 7, 2024Updated last year
- A fancy-schmancy tcpdump-esque TUI, programmed in Go.☆377May 1, 2022Updated 3 years ago
- ☆21Jun 3, 2021Updated 4 years ago
- An eBPF playground☆210Dec 12, 2023Updated 2 years ago
- Disable SSL certificate verification for all binaries that use libssl☆48Jul 15, 2022Updated 3 years ago
- CVE-2023-1671-POC, based on dnslog platform☆17Apr 26, 2023Updated 2 years ago
- 🐧 A simple kernel-level rootkit☆21Mar 1, 2016Updated 9 years ago
- reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support☆23Sep 15, 2021Updated 4 years ago
- build distroless images with alpine tools☆130May 17, 2022Updated 3 years ago
- Linux Process Discovery. C Library, Go bindings, Runtime.☆223Jul 20, 2022Updated 3 years ago
- A Linux x86/x86-64 tool to trace registers and memory regions.☆40Jun 9, 2022Updated 3 years ago
- Parses BGP/AS data from multiple different sources☆11Dec 4, 2021Updated 4 years ago
- Java archive implant toolkit.☆61Apr 20, 2025Updated 9 months ago
- flexible, structured event replication format for DNS servers (Protocol Buffers schema)☆27Feb 1, 2025Updated last year
- GUSTAVE is a fuzzing platform for embedded OS kernels. It is based on QEMU and AFL (and all of its forkserver siblings). It allows to fuz…☆202Jul 28, 2021Updated 4 years ago
- The Noisy Sockets CLI☆264Sep 20, 2024Updated last year
- A TCP/UDP load generator that provides fine-grained, flow-level control in Go.☆153Jan 13, 2026Updated last month
- ☆21Sep 25, 2018Updated 7 years ago
- Process behaviour anomaly detection using eBPF and unsupervised-learning Autoencoders☆137Aug 15, 2022Updated 3 years ago
- Simple implementation of an AppSec Pipeline using the Gasp library☆13Sep 8, 2019Updated 6 years ago
- ☆10May 12, 2022Updated 3 years ago
- JA4TScan is an active TCP server fingerprinting tool.☆105Aug 29, 2024Updated last year
- Linux Application Level Firewall based on eBPF and NFQUEUE.☆705Nov 5, 2023Updated 2 years ago
- Repo for The Crown: Exploratory Analysis of Nim Malware DEF CON 615 talk☆46Jan 23, 2022Updated 4 years ago
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,656Jan 8, 2025Updated last year
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Aug 18, 2022Updated 3 years ago
- A list of backdoor samples I find online.☆13Dec 16, 2019Updated 6 years ago
- A crawler for kernel releases distributed by the major Linux distributions.☆13Oct 18, 2024Updated last year
- ☆11Dec 26, 2023Updated 2 years ago
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆15Apr 10, 2025Updated 10 months ago
- ☆13Aug 11, 2018Updated 7 years ago