theSecHunter / Hades-Linux
Hades is a Host-Based Intrusion Detection System based on both eBPF(kernel) and netlink/cn_proc(userspace).
☆24Updated 2 months ago
Alternatives and similar repositories for Hades-Linux:
Users that are interested in Hades-Linux are comparing it to the libraries listed below
- Windows CVE主防(HIPS/HIDS)☆54Updated 3 years ago
- 一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,☆19Updated last year
- ☆23Updated 2 years ago
- 简单安排一下 autochk.sys 这个rootkit☆71Updated last year
- ☆36Updated 4 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆65Updated 2 years ago
- 沙箱测试,测评国内常见沙箱的代码与结论☆100Updated 3 years ago
- Windows Kernel Knowledge && Collect Resources on the wire && Nothing innovation by myself &&☆55Updated last month
- Windows Defender VDM lua collections☆47Updated 2 years ago
- IDA Python script for generating Windows x86 shellcode with one click☆36Updated last year
- ☆20Updated 9 months ago
- Call NtCreateUserProcess directly as normal.☆68Updated 2 years ago
- 加密壳☆33Updated 4 years ago
- Windows file stream util tool☆21Updated 11 years ago
- Kill Protected Process Light Process (include av)☆55Updated last year
- power-kill is a project that kill protected processes (such as EDR or AV) by injecting shellcode into high privilege processes☆46Updated 3 years ago
- windows下做本地或远程的磁盘镜像的工具,可输出vmdk☆27Updated 2 months ago
- [HIPS]RDP(3389)爆破防护☆45Updated 5 years ago
- 白文件扫描器 非公开☆26Updated 3 years ago
- bypass BeaconEye☆88Updated 3 years ago
- ☆40Updated 3 years ago
- Beacon compiled using clang☆63Updated 2 years ago
- windwos内核研究与驱动Code☆61Updated 3 years ago
- CobaltStrikeDetect☆46Updated 3 years ago
- 一个加壳工具☆62Updated 5 years ago
- ☆32Updated 4 years ago
- 笔者的在原作者池风水利用工具(以下简称工具)基础上进行二次开发,新增了全自动获取内核调试模块符号的偏移量及配置参数和不同漏洞利用方式优化等功能, 解决了不同Windows版本适配问题,工具包括适配驱动和利用程序两部分组成,实现了在Windows 10 19H1之后任意版本包…☆77Updated 3 years ago
- 从admin冲到TrustedInstaller☆17Updated 2 years ago
- UAC_wenpon☆48Updated 3 years ago
- bypass UAC even when configured to always notify user☆29Updated 3 years ago