A Linux Host-based Intrusion Detection System based on eBPF.
☆456Dec 20, 2023Updated 2 years ago
Alternatives and similar repositories for ehids-agent
Users that are interested in ehids-agent are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆304May 24, 2026Updated 3 weeks ago
- A golang ebpf libary based on cilium/ebpf and datadog/ebpf.☆351May 18, 2025Updated last year
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,644May 11, 2026Updated last month
- Collection of Linux eBPF slides/documents.☆979Nov 15, 2023Updated 2 years ago
- ebpfkit is a rootkit powered by eBPF☆847Feb 28, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆27Nov 24, 2021Updated 4 years ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆690Jul 7, 2024Updated last year
- ☆48Mar 19, 2022Updated 4 years ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,670Oct 19, 2023Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPF☆186Nov 23, 2023Updated 2 years ago
- Inject ELF into remote process☆151Oct 20, 2023Updated 2 years ago
- 📦 Make security testing of K8s, Docker, and Containerd easier.☆4,676May 1, 2026Updated last month
- Linux EDR written in Golang and based on eBPF.☆248May 24, 2022Updated 4 years ago
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等�☆1,273Jul 8, 2023Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,962Apr 7, 2024Updated 2 years ago
- vArmor is a cloud-native container hardening system that leverages AppArmor/BPF/Seccomp and network proxy technologies to enforce access …☆479Updated this week
- eBPF-based Security Observability and Runtime Enforcement☆4,749Updated this week
- [WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐☆3,161Nov 6, 2025Updated 7 months ago
- 一个由长亭自研,直观而可扩展的容器安全 SDK☆118May 26, 2023Updated 3 years ago
- 《云原生安全:攻防实践与体系构建》资料仓库☆776Feb 19, 2023Updated 3 years ago
- veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集☆1,648Jan 10, 2024Updated 2 years ago
- agent 部分使用go 开发而成,采用插件模式开发而成,配置部分以及agent存活使用etcd。☆19Aug 2, 2021Updated 4 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆154Feb 16, 2022Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.☆15,225Jun 7, 2026Updated last week
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆600Apr 1, 2021Updated 5 years ago
- 安全、快捷、高交互、企业级的蜜罐管理系统,护网;支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports mult…☆1,269Oct 17, 2023Updated 2 years ago
- 专注于JVM的运行时防御系统RASP☆296Jun 14, 2024Updated 2 years ago
- bpf 学习仓库☆1,498Apr 30, 2022Updated 4 years ago
- Dectect syscall hooking using eBPF☆169Apr 28, 2023Updated 3 years ago
- GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测☆75Feb 8, 2025Updated last year
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆457Mar 24, 2022Updated 4 years ago
- 检测绝大部分所谓的内存免杀马☆732Sep 15, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Oct 19, 2025Updated 7 months ago
- Hades is an cross-platform HIDS with kernel-space data collection.☆49May 29, 2023Updated 3 years ago
- Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…☆698Dec 25, 2023Updated 2 years ago
- Codeql学习笔记☆902Apr 25, 2022Updated 4 years ago
- CloudWalker Platform☆674Dec 14, 2022Updated 3 years ago
- Metarget is a framework providing automatic constructions of vulnerable infrastructures.☆1,397Apr 16, 2025Updated last year
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆141Feb 28, 2023Updated 3 years ago