pathtofile / bpf-pipesnoopLinks
Example program using eBPF to log data being based in using shell pipes
☆41Updated 4 years ago
Alternatives and similar repositories for bpf-pipesnoop
Users that are interested in bpf-pipesnoop are comparing it to the libraries listed below
Sorting:
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated 2 years ago
- Dectect syscall hooking using eBPF☆162Updated 2 years ago
- Disable SSL certificate verification for all binaries that use libssl☆49Updated 3 years ago
- Changing memory protection in an arbitrary process☆47Updated 6 years ago
- eBPF - extended Berkeley Packet Filter tooling☆124Updated 3 years ago
- (Linux Kernel) Stack Monitoring Tool☆47Updated 3 years ago
- Linux Kernel Runtime Integrity with eBPF☆183Updated last year
- ☆89Updated last year
- pyGoRE - Python library for analyzing Go binaries☆65Updated 3 years ago
- ☆28Updated 7 years ago
- LKRG bypass methods☆73Updated 5 years ago
- Various utilities useful for developers writing BPF tools☆30Updated 2 years ago
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆110Updated 5 years ago
- ELF DSO injector☆67Updated 3 months ago
- Alcatraz project for Black Hat USA 2021☆78Updated 4 years ago
- An eBPF detection program for CVE-2022-0847☆28Updated 3 years ago
- Pulled out Linux kernel code to run in userland so they could be targeted by AFL and KLEE☆20Updated 5 years ago
- Vault Exploit Defense☆129Updated last year
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆137Updated 2 years ago
- Whitelisting LD_PRELOAD libraries using LD_AUDIT☆63Updated 3 years ago
- egrets monitors egress☆46Updated 5 years ago
- POC for Phantom Attack☆83Updated 3 years ago
- ☆47Updated 7 years ago
- A system call interception tool☆58Updated 9 months ago
- ugly code to check linux kernel memory and dump some internal structures☆47Updated 10 months ago
- A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermi…☆78Updated 4 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- PoC multi-layer protector for ELF32 x86 binaries☆11Updated 3 years ago
- Trace deep kernel events through eBPF and lsm hooks☆39Updated 4 years ago
- Fast multi-platform (ELF/PE/MachO) binary checksec written in Rust.☆107Updated last year