johnjohnsp1 / capsule8
Capsule8: open-source cloud-native behavioral security monitoring
☆32Updated 7 years ago
Alternatives and similar repositories for capsule8:
Users that are interested in capsule8 are comparing it to the libraries listed below
- A collection of projects demonstrating various commandline cloaking techniques on Linux☆57Updated 2 years ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆126Updated 2 years ago
- CVE-2020-10749 PoC (Kubernetes MitM attacks via IPv6 rogue router advertisements)☆25Updated 4 years ago
- An eBPF detection program for CVE-2022-0847☆28Updated 2 years ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated 10 months ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated last year
- This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability☆54Updated 4 years ago
- Example program using eBPF to log data being based in using shell pipes☆41Updated 4 years ago
- teler Resource Collections☆36Updated this week
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- Vulnerability Scanner for Detecting Publicly Disclosed Vulnerabilities in Application Dependencies☆23Updated 5 years ago
- eBPF-based EDR for Linux☆17Updated 7 months ago
- Trace deep kernel events through eBPF and lsm hooks☆35Updated 4 years ago
- PoC for CVE-2020-8617 (BIND)☆45Updated 4 years ago
- Linux endpoint events for BPF enabled systems☆24Updated 2 years ago
- Disable SSL certificate verification for all binaries that use libssl☆49Updated 2 years ago
- ☆19Updated 4 years ago
- A LKM rootkit for Linux kernel 2.6.x, 3.x and 4.x☆43Updated 8 years ago
- ☆24Updated 5 years ago
- Resources for CloudNative security research☆32Updated 3 years ago
- A repository for OSSEC rules and decoders☆54Updated last year
- ☆37Updated last year
- monitor and protect SSH sessions with eBPF☆66Updated 3 years ago
- ☆18Updated 2 years ago
- A process level network security monitoring and enforcement project for Kubernetes, using eBPF☆42Updated 4 years ago
- SysFlow documentation and issues tracker☆46Updated 6 months ago
- It is a repository for Red Team emulation based on MITRE ATT&CK.☆16Updated 5 years ago
- Proof of Concept exploit for Kubernetes CVE-2020-8559☆20Updated 4 years ago
- Elastic's eBPF☆68Updated last week
- The plan is to have a replacement for psexec☆31Updated 6 years ago