landhb / DrawBridgeLinks
Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
☆114Updated last year
Alternatives and similar repositories for DrawBridge
Users that are interested in DrawBridge are comparing it to the libraries listed below
Sorting:
- Linux 4.9 Loadable Kernel Module to hide processes from system utilities☆67Updated 6 years ago
- Whitelisting LD_PRELOAD libraries using LD_AUDIT☆63Updated 3 years ago
- eBPF - extended Berkeley Packet Filter tooling☆122Updated 3 years ago
- Rootkit Detector for UNIX☆61Updated last year
- ☆92Updated 7 years ago
- WhiteBeam: Transparent endpoint security☆101Updated 2 years ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆132Updated 2 years ago
- Linux v4.x.x Rootkit☆90Updated 10 months ago
- E2E encryption for multi-hop tty sessions or portshells + TCP/UDP port forward☆122Updated 7 months ago
- ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection)☆135Updated 7 years ago
- A ptrace POC by hooking SSH to reveal provided passwords☆182Updated 8 years ago
- Hide processes as a normal user in Linux.☆258Updated 11 months ago
- Disabling kernel lockdown on Ubuntu without physical access☆79Updated 2 years ago
- A keystroke / terminal logger for Linux.☆216Updated 11 months ago
- SLAE Assignments☆39Updated last year
- This is a kernel module invoked reverse shell proof of concept.☆72Updated 5 years ago
- Small tool to run ELF binaries from memory with a given process name☆167Updated 3 years ago
- a friendly wrapper around ptrace☆132Updated 3 years ago
- Kernel-Mode Rootkit Hunter☆369Updated 3 years ago
- (Linux Kernel) Stack Monitoring Tool☆45Updated 3 years ago
- JynxKit2 is an LD_PRELOAD userland rootkit based on the original JynxKit. The backdoor has been replaced with an "accept()" system hook.☆173Updated 12 years ago
- Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.☆225Updated 5 years ago
- TCP/UDP symmetric encryption tunnel wrapper☆120Updated 4 years ago
- Tool to examine the behaviour of setuid binaries under constrained limits.☆61Updated 4 years ago
- General Research Repository - Only updated when I feel like it☆28Updated 8 months ago
- A toy CTF Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface☆88Updated 2 months ago
- monitor and protect SSH sessions with eBPF☆69Updated 3 years ago
- The Alternative Fileless File System☆57Updated 6 years ago
- ICMP and DNS tunneling via IPv4 and IPv6☆207Updated 2 months ago
- out-of-tree kernel {module, exploit} development tool☆228Updated 6 months ago