Alternatives and similar repositories for ehids-agent

Users that are interested in ehids-agent are comparing it to the libraries listed below

• chriskaliX / Hades
  Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
  ☆295Updated 6 months ago
• gojue / ebpfmanager
  A golang ebpf libary based on cilium/ebpf and datadog/ebpf.
  ☆335Updated last month
• bytedance / vArmor
  vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that…
  ☆375Updated this week
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆618Updated 11 months ago
• bytedance / Elkeid-HUB
  Elkeid HUB is a rule/event processing engine maintained by the Elkeid Team that supports streaming/offline (not yet supported by the comm…
  ☆95Updated 2 years ago
• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆800Updated 2 years ago
• EBWi11 / AgentSmith-HIDS
  By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.
  ☆595Updated 4 years ago
• gojue / ebpf-slide
  Collection of Linux eBPF slides/documents.
  ☆941Updated last year
• bytedance / vArmor-ebpf
  vArmor-ebpf is a specialized project dedicated to maintaining the BPF code utilized by vArmor.
  ☆35Updated last week
• aliyun / coolbpf
  ☆274Updated this week
• mozillazg / cloud-native-security-with-ebpf
  《eBPF 云原生安全：原理与实践》书中示例程序的完整源代码
  ☆99Updated 6 months ago
• Hackerl / pangolin
  Inject ELF into remote process
  ☆142Updated last year
• mozillazg / hello-libbpfgo
  Examples for aquasecurity/libbpfgo and cilium/ebpf
  ☆176Updated 3 weeks ago
• eunomia-bpf / awesome-ebpf-zh
  与 eBPF 相关的精选项目的中文清单
  ☆98Updated 2 years ago
• eunomia-bpf / eunomia-bpf
  A Toolchain to make Build and Run eBPF programs easier
  ☆753Updated 9 months ago
• Metarget / cloud-native-security-book
  《云原生安全：攻防实践与体系构建》资料仓库
  ☆755Updated 2 years ago
• aquasecurity / btfhub
  BTFhub, in collaboration with the BTFhub Archive repository, supplies BTF files for all published kernels that lack native support for em…
  ☆433Updated last week
• aquasecurity / btfhub-archive
  The BTFhub Archive repository provides BTF files for those published kernels that lack native support for embedded BTF, thereby enhancing…
  ☆115Updated 3 weeks ago
• libinjection / libinjection
  SQL / SQLI tokenizer parser analyzer
  ☆199Updated 3 months ago
• falcosecurity / libs
  libsinsp, libscap, the kernel module driver, and the eBPF driver sources
  ☆272Updated this week
• jvm-rasp / jrasp-agent
  专注于JVM的运行时防御系统RASP
  ☆283Updated last year
• sourque / louis
  Linux EDR written in Golang and based on eBPF.
  ☆241Updated 3 years ago
• Asphaltt / learn-by-example
  Learn something interesting by examples.
  ☆71Updated 2 months ago
• chaitin / libveinmind
  一个由长亭自研，直观而可扩展的容器安全 SDK
  ☆121Updated 2 years ago
• iqiyi / qnsm
  QNSM is network security monitoring framework based on DPDK.
  ☆526Updated 3 years ago
• feiskyer / ebpf-apps
  极客时间专栏《eBPF 核心技术与实战》案例
  ☆352Updated last month
• Gui774ume / ebpfkit-monitor
  ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
  ☆132Updated 2 years ago
• al0ne / suricata_optimize
  Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置
  ☆141Updated 5 years ago
• linux-lock / bpflock
  bpflock - eBPF driven security for locking and auditing Linux machines
  ☆147Updated 3 years ago
• linuxkerneltravel / lmp
  LMP provides an eBPF Supermarket for developers, including eBPF tools, open-source projects based on eBPF, eBPF learning materials, Linux…
  ☆680Updated 3 weeks ago