Alternatives and similar repositories for capsule8

Users that are interested in capsule8 are comparing it to the libraries listed below

• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• Gui774ume / ebpfkit-monitor
  ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
  ☆133Updated 2 years ago
• Cisco-Talos / Re2Pcap
  ☆54Updated last year
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆116Updated 2 years ago
• dbrandt / proc_events
  Access the process event connector in linux kernels from Python.
  ☆28Updated 3 years ago
• Gui774ume / krie
  Linux Kernel Runtime Integrity with eBPF
  ☆179Updated last year
• pathtofile / bpf-pipesnoop
  Example program using eBPF to log data being based in using shell pipes
  ☆41Updated 4 years ago
• knqyf263 / dnspooq
  DNSpooq - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)
  ☆99Updated 4 years ago
• hanj4096 / wukong
  A LKM rootkit for Linux kernel 2.6.x, 3.x and 4.x
  ☆43Updated 9 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆38Updated 10 years ago
• chenkaie / junkcode
  Junk code - needless to explain
  ☆77Updated 3 years ago
• hardenedlinux / hardenedlinux-zeek-scripts
  ☆38Updated last year
• linux-lock / bpflock
  bpflock - eBPF driven security for locking and auditing Linux machines
  ☆148Updated 3 years ago
• danielsagi / kube-dnsspoof
  A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.
  ☆78Updated 5 years ago
• vmware-archive / cbsensor-linux-bpf
  Linux endpoint events for BPF enabled systems
  ☆24Updated 2 years ago
• Gui774ume / network-security-probe
  A process level network security monitoring and enforcement project for Kubernetes, using eBPF
  ☆43Updated 5 years ago
• knqyf263 / CVE-2020-8617
  PoC for CVE-2020-8617 (BIND)
  ☆45Updated 5 years ago
• fox-it / OpenSSH-Network-Parser
  Project to decrypt and parse SSH traffic
  ☆66Updated 4 years ago
• hardenedvault / ved
  Vault Exploit Defense
  ☆127Updated 10 months ago
• aquasecurity / vuln-list-update
  ☆184Updated 3 weeks ago
• lumontec / lsmtrace
  Trace deep kernel events through eBPF and lsm hooks
  ☆37Updated 4 years ago
• Pray3r / cloud-native-security
  Resources for CloudNative security research
  ☆32Updated 3 years ago
• lixingchen12138 / libvmi-volatility-master
  虚拟机带外内存监控
  ☆14Updated 7 years ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆108Updated last month
• activeshadow / go-atomicredteam
  go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…
  ☆49Updated 2 years ago
• tdwyer / CVE-2020-8559
  This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability
  ☆54Updated 4 years ago
• rsabir / bro-dsniff
  A dsniff project using bro
  ☆10Updated 9 years ago
• YJesus / Unhide-NG
  Next generation !
  ☆66Updated 4 years ago
• bgeesaman / subpath-exploit
  Writeup of CVE-2017-1002101 with sample "exploit"/escape
  ☆35Updated 7 years ago
• Freem93 / grammar_nasl_v2
  ☆16Updated 8 years ago