A Linux Host-based Intrusion Detection System based on eBPF.
☆457Dec 20, 2023Updated 2 years ago
Alternatives and similar repositories for ehids-agent
Users that are interested in ehids-agent are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Nov 30, 2024Updated last year
- A golang ebpf libary based on cilium/ebpf and datadog/ebpf.☆350May 18, 2025Updated 11 months ago
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,635Apr 27, 2026Updated last week
- Collection of Linux eBPF slides/documents.☆984Nov 15, 2023Updated 2 years ago
- ebpfkit is a rootkit powered by eBPF☆846Feb 28, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆27Nov 24, 2021Updated 4 years ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆685Jul 7, 2024Updated last year
- ☆48Mar 19, 2022Updated 4 years ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,667Oct 19, 2023Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPF☆186Nov 23, 2023Updated 2 years ago
- Inject ELF into remote process☆151Oct 20, 2023Updated 2 years ago
- 📦 Make security testing of K8s, Docker, and Containerd easier.☆4,641Updated this week
- Linux EDR written in Golang and based on eBPF.☆247May 24, 2022Updated 3 years ago
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等☆1,269Jul 8, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,964Apr 7, 2024Updated 2 years ago
- vArmor is a cloud-native container hardening system that leverages AppArmor/BPF/Seccomp and network proxy technologies to enforce access …☆466Updated this week
- eBPF-based Security Observability and Runtime Enforcement☆4,624Updated this week
- [WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐☆3,161Nov 6, 2025Updated 6 months ago
- 一个由长亭自研,直观而可扩展的容器安全 SDK☆119May 26, 2023Updated 2 years ago
- 《云原生安全:攻防实践与体系构建》资料仓库☆777Feb 19, 2023Updated 3 years ago
- veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集☆1,648Jan 10, 2024Updated 2 years ago
- agent 部分使用go 开发而成,采用插件模式开发而成,配置部分以及agent存活使用etcd。☆19Aug 2, 2021Updated 4 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆152Feb 16, 2022Updated 4 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.☆15,137Updated this week
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆601Apr 1, 2021Updated 5 years ago
- 安全、快捷、高交互、企业级的蜜罐管理系统,护网;支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports mult…☆1,269Oct 17, 2023Updated 2 years ago
- 专注于JVM的运行时防御系统RASP☆296Jun 14, 2024Updated last year
- bpf 学习仓库☆1,500Apr 30, 2022Updated 4 years ago
- Dectect syscall hooking using eBPF☆170Apr 28, 2023Updated 3 years ago
- GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测☆76Feb 8, 2025Updated last year
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆458Mar 24, 2022Updated 4 years ago
- 检测绝大部分所谓的内存免杀马☆733Sep 15, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Oct 19, 2025Updated 6 months ago
- Hades is an cross-platform HIDS with kernel-space data collection.☆49May 29, 2023Updated 2 years ago
- Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…☆695Dec 25, 2023Updated 2 years ago
- Codeql学习笔记☆902Apr 25, 2022Updated 4 years ago
- Metarget is a framework providing automatic constructions of vulnerable infrastructures.☆1,384Apr 16, 2025Updated last year
- CloudWalker Platform☆675Dec 14, 2022Updated 3 years ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆141Feb 28, 2023Updated 3 years ago