trailofbits / linuxeventsLinks
A sample PoC for container-aware exec events for osquery
☆24Updated last year
Alternatives and similar repositories for linuxevents
Users that are interested in linuxevents are comparing it to the libraries listed below
Sorting:
- Various utilities useful for developers writing BPF tools☆30Updated 2 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated 2 years ago
- Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects☆85Updated 2 years ago
- Example program using eBPF to log data being based in using shell pipes☆41Updated 4 years ago
- A C++ library that parses debug information encoded in BTF format☆25Updated 2 years ago
- Python interface for Binexport, the Bindiff export format☆17Updated last month
- ☆28Updated 6 years ago
- This repository contains the companion code from the "All your tracing are belong to BPF" blog posts☆18Updated 2 years ago
- Supporting Materials for “Symbolic Triage” blog post☆24Updated 2 years ago
- Join the REVEN community. Ask questions, talk about reverse engineering, discuss REVEN, and show off your work!☆13Updated 3 years ago
- ugly code to check linux kernel memory and dump some internal structures☆47Updated 8 months ago
- A system call interception tool☆57Updated 7 months ago
- Demonstrate ability to read memfd_secret() data from the kernel☆58Updated last year
- Experiments involving the Windows Hypervisor Platform☆23Updated 5 years ago
- Virtual machine introspection library based on libvmi - parts of this work have been funded by Deutsche Forschungsgemeinschaft (DFG) – pr…☆30Updated 3 years ago
- Another (bad) ROP gadget finder, but this time in Rust☆22Updated last year
- Some Rust bindings for Binary Ninja☆30Updated last year
- An Integrity-Check Monitoring Pintool☆58Updated 4 years ago
- Utilities for working with vivisect☆25Updated 4 months ago
- Symbolic execution of LLVM IR traces for program understanding.☆27Updated 11 years ago
- X86 disassembler benchmark☆61Updated last year
- ☆21Updated 4 years ago
- SPI flash read MitM attack PoC☆38Updated 3 years ago
- iTLB multihit PoC☆41Updated last year
- ☆58Updated 2 years ago
- Pulled out Linux kernel code to run in userland so they could be targeted by AFL and KLEE☆20Updated 5 years ago
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Updated last year
- An automated setup for fuzzing Redis w/ AFL++☆34Updated 3 years ago
- ☆52Updated 6 years ago
- PoC multi-layer protector for ELF32 x86 binaries☆11Updated 3 years ago