pathtofile / bpf-pipesnoopLinks
Example program using eBPF to log data being based in using shell pipes
☆41Updated 4 years ago
Alternatives and similar repositories for bpf-pipesnoop
Users that are interested in bpf-pipesnoop are comparing it to the libraries listed below
Sorting:
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated 2 years ago
- Disable SSL certificate verification for all binaries that use libssl☆49Updated 3 years ago
- Pulled out Linux kernel code to run in userland so they could be targeted by AFL and KLEE☆20Updated 5 years ago
- Changing memory protection in an arbitrary process☆47Updated 6 years ago
- ☆89Updated last year
- Alcatraz project for Black Hat USA 2021☆78Updated 3 years ago
- gopclntab finder and analyzer for Radare2☆20Updated 4 years ago
- A system call interception tool☆57Updated 7 months ago
- Find strings in Go binaries☆53Updated 5 years ago
- (Linux Kernel) Stack Monitoring Tool☆45Updated 3 years ago
- ELF DSO injector☆65Updated last month
- ELF Shared library injector using DT_NEEDED precedence infection. Acts as a permanent LD_PRELOAD☆110Updated 5 years ago
- LKRG bypass methods☆72Updated 5 years ago
- Heap analysis tooling for ptmalloc☆45Updated 3 years ago
- pyGoRE - Python library for analyzing Go binaries☆64Updated 3 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- ☆47Updated 6 years ago
- a friendly wrapper around ptrace☆132Updated 3 years ago
- A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermi…☆78Updated 4 years ago
- ☆28Updated 6 years ago
- Linux Kernel Runtime Integrity with eBPF☆180Updated last year
- Various utilities useful for developers writing BPF tools☆30Updated 2 years ago
- Vault Exploit Defense☆128Updated 10 months ago
- Dectect syscall hooking using eBPF☆159Updated 2 years ago
- PoC multi-layer protector for ELF32 x86 binaries☆11Updated 3 years ago
- Trace deep kernel events through eBPF and lsm hooks☆37Updated 4 years ago
- Using LibVMI to detect malware☆31Updated 3 years ago
- A sample PoC for container-aware exec events for osquery☆24Updated last year
- ugly code to check linux kernel memory and dump some internal structures☆47Updated 8 months ago
- An IDA processor for eBPF bytecode☆34Updated 8 years ago