A Linux Host-based Intrusion Detection System based on eBPF.
☆458Dec 20, 2023Updated 2 years ago
Alternatives and similar repositories for ehids-agent
Users that are interested in ehids-agent are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Nov 30, 2024Updated last year
- A golang ebpf libary based on cilium/ebpf and datadog/ebpf.☆348May 18, 2025Updated 10 months ago
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,609Mar 9, 2026Updated 2 weeks ago
- Collection of Linux eBPF slides/documents.☆982Nov 15, 2023Updated 2 years ago
- ebpfkit is a rootkit powered by eBPF☆840Feb 28, 2023Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- ☆28Nov 24, 2021Updated 4 years ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆685Jul 7, 2024Updated last year
- ☆49Mar 19, 2022Updated 4 years ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,665Oct 19, 2023Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPF☆184Nov 23, 2023Updated 2 years ago
- Inject ELF into remote process☆151Oct 20, 2023Updated 2 years ago
- 📦 Make security testing of K8s, Docker, and Containerd easier.☆4,587Feb 23, 2026Updated last month
- Linux EDR written in Golang and based on eBPF.☆244May 24, 2022Updated 3 years ago
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等☆1,266Jul 8, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,951Apr 7, 2024Updated last year
- vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that…☆451Mar 20, 2026Updated last week
- eBPF-based Security Observability and Runtime Enforcement☆4,487Updated this week
- [WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐☆3,153Nov 6, 2025Updated 4 months ago
- 一个由长亭自研,直观而可扩展的容器安全 SDK☆119May 26, 2023Updated 2 years ago
- 《云原生安全:攻防实践与体系构建》资料仓库☆779Feb 19, 2023Updated 3 years ago
- veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集☆1,646Jan 10, 2024Updated 2 years ago
- agent 部分使用go 开发而成,采用插件模式开发而成,配置部分以及agent存活使用etcd。☆20Aug 2, 2021Updated 4 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.☆15,041Updated this week
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆602Apr 1, 2021Updated 4 years ago
- 安全、快捷、高交互、企业级的蜜罐管理系统,护网;支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports mult…☆1,271Oct 17, 2023Updated 2 years ago
- 专注于JVM的运行时防御系统RASP☆296Jun 14, 2024Updated last year
- bpf 学习仓库☆1,499Apr 30, 2022Updated 3 years ago
- Dectect syscall hooking using eBPF☆169Apr 28, 2023Updated 2 years ago
- GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测☆76Feb 8, 2025Updated last year
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆458Mar 24, 2022Updated 4 years ago
- 检测绝大部分所谓的内存免杀马☆734Sep 15, 2022Updated 3 years ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Oct 19, 2025Updated 5 months ago
- Hades is an cross-platform HIDS with kernel-space data collection.☆49May 29, 2023Updated 2 years ago
- Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…☆697Dec 25, 2023Updated 2 years ago
- Codeql学习笔记☆900Apr 25, 2022Updated 3 years ago
- Metarget is a framework providing automatic constructions of vulnerable infrastructures.☆1,373Apr 16, 2025Updated 11 months ago
- CloudWalker Platform☆676Dec 14, 2022Updated 3 years ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆141Feb 28, 2023Updated 3 years ago