The Linux port of the Sysinternals Sysmon tool.
☆284May 7, 2026Updated last week
Alternatives and similar repositories for SysinternalsEBPF
Users that are interested in SysinternalsEBPF are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Sysmon for Linux☆2,100May 7, 2026Updated last week
- A Linux version of the Procmon Sysinternals tool☆4,675May 7, 2026Updated last week
- An open source library for operating the Windows Overlay Filter driver.☆22Jan 16, 2019Updated 7 years ago
- A Linux version of the ProcDump Sysinternals tool☆3,070May 7, 2026Updated last week
- ☆15Apr 28, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ebpfkit is a rootkit powered by eBPF☆844Feb 28, 2023Updated 3 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆123Mar 30, 2026Updated last month
- eBPF kernels and user space tools for BeagleBone SBCs☆10Jan 16, 2022Updated 4 years ago
- Configurations for DFIR ORC☆28Mar 28, 2024Updated 2 years ago
- ☆25Apr 26, 2026Updated 3 weeks ago
- Dectect syscall hooking using eBPF☆170Apr 28, 2023Updated 3 years ago
- GoBPFLD is a pure go eBPF loader/userspace library☆20Feb 5, 2022Updated 4 years ago
- iptables-trace is an eBPF enhanced iptables-TRACE alternative iptables TRACE. GPL-3.0 license☆14Feb 3, 2025Updated last year
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Updated this week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A Powershell script for frequency analysis of separated values data files.☆17Jan 22, 2014Updated 12 years ago
- Host Discovery Tool☆10Jan 17, 2022Updated 4 years ago
- A K8s ClusterIP HTTP monitoring library based on eBPF☆18May 23, 2021Updated 4 years ago
- This repository includes the parsers necessary for Microsoft Network Monitor to parse etl logs generated by Packet Monitor (Pktmon).☆23Aug 30, 2022Updated 3 years ago
- This repository contains a set of rules samples that can be directly used with Trellix Endpoint Security, in the Exploit Prevention polic…☆31Updated this week
- This is the Linux kernel module event collector for the Carbon Black Cloud.☆19Aug 4, 2023Updated 2 years ago
- Linux Kernel module for Carbon Black EDR☆12Dec 11, 2020Updated 5 years ago
- A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.☆1,960Apr 7, 2024Updated 2 years ago
- Set of scripts to index PCAP files and retrieve packets☆15Sep 10, 2015Updated 10 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- bpflock - eBPF driven security for locking and auditing Linux machines☆153Feb 16, 2022Updated 4 years ago
- Exploring RPC interfaces on Windows☆352Jan 30, 2024Updated 2 years ago
- ☆91Dec 5, 2025Updated 5 months ago
- A Windows API wrapper package for the Go Programming Language☆19Jun 27, 2025Updated 10 months ago
- Indicators of compromise☆18May 13, 2026Updated last week
- sopacker是一个用于打包可执行文件和动态库的脚本工程. 生成的新可执行文件可以在大部分Linux上运行. sopacker is a script for packaging an executable file and all its dependent dynam…☆16Nov 14, 2025Updated 6 months ago
- ☆13Dec 26, 2022Updated 3 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- TrustedSec Sysinternals Sysmon Community Guide☆1,413Feb 10, 2026Updated 3 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Elastic Security detection content for Endpoint☆1,429May 11, 2026Updated last week
- Linux Kernel Runtime Integrity with eBPF☆186Nov 23, 2023Updated 2 years ago
- The Multiplatform Linux Sandbox☆16Dec 19, 2023Updated 2 years ago
- ☆82Sep 29, 2025Updated 7 months ago
- eBPF-based Security Observability and Runtime Enforcement☆4,676Updated this week
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Jun 27, 2025Updated 10 months ago
- Scaffolding for BPF application development with libbpf and BPF CO-RE☆1,482Apr 9, 2026Updated last month