redcanaryco / redcanary-ebpf-sensorView external linksLinks
Red Canary's eBPF Sensor
☆113Jun 10, 2025Updated 8 months ago
Alternatives and similar repositories for redcanary-ebpf-sensor
Users that are interested in redcanary-ebpf-sensor are comparing it to the libraries listed below
Sorting:
- A Rust library for managing eBPF programs.☆123Feb 26, 2024Updated last year
- Linux endpoint events for BPF enabled systems☆24Dec 9, 2022Updated 3 years ago
- CO-RE code for the Netdata eBPF plugin.☆16Feb 6, 2026Updated last week
- Dectect syscall hooking using eBPF☆168Apr 28, 2023Updated 2 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 3 years ago
- Example BPF program with LSM hooks☆35Feb 24, 2021Updated 4 years ago
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆680Jul 7, 2024Updated last year
- An offensive bash script which tries to find GENERIC privesc vulnerabilities and issues.☆13Oct 17, 2017Updated 8 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆457Dec 20, 2023Updated 2 years ago
- 🔨Reverse Shell 备忘录☆16Apr 2, 2020Updated 5 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Mar 7, 2023Updated 2 years ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆140Feb 28, 2023Updated 2 years ago
- Linux Runtime Security and Forensics using eBPF☆4,362Updated this week
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Feb 17, 2022Updated 3 years ago
- ☆64Jul 3, 2024Updated last year
- A sample PoC for container-aware exec events for osquery☆26Feb 15, 2024Updated 2 years ago
- Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.☆23Oct 13, 2025Updated 4 months ago
- Linux EDR written in Golang and based on eBPF.☆244May 24, 2022Updated 3 years ago
- Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.☆18Mar 22, 2020Updated 5 years ago
- Elastic's eBPF☆73Jan 27, 2026Updated 2 weeks ago
- BTFhub, in collaboration with the BTFhub Archive repository, supplies BTF files for all published kernels that lack native support for em…☆470Updated this week
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Sep 13, 2023Updated 2 years ago
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆232Jun 2, 2024Updated last year
- THOR Thunderstorm Collectors☆25Updated this week
- Cuckoo Sandbox is an automated dynamic malware analysis system☆10Sep 11, 2020Updated 5 years ago
- signs things with ssh-ed25519 keys☆13Jan 4, 2019Updated 7 years ago
- Various CTF challenge solutions☆12Apr 20, 2021Updated 4 years ago
- zentao Getshell☆10Oct 27, 2020Updated 5 years ago
- Cyberark secrets provider for k8s☆29Jan 12, 2026Updated last month
- Example packet.proxy plugins.☆22Jan 8, 2021Updated 5 years ago
- F-Secure Lightweight Acqusition for Incident Response (FLAIR)☆16Jul 5, 2021Updated 4 years ago
- ☆12Jun 29, 2021Updated 4 years ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Nov 30, 2024Updated last year
- Visual Studio Code extension for MITRE ATT&CK☆56Jul 3, 2024Updated last year
- ☆110Apr 29, 2025Updated 9 months ago
- Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects☆86Oct 2, 2022Updated 3 years ago
- Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.☆15May 12, 2023Updated 2 years ago
- Reverse transparent protocol agnostic socks proxy.☆17Jan 14, 2020Updated 6 years ago
- A collection of tools adversaries commonly use in an attack.☆14Nov 23, 2024Updated last year