trailofbits / linuxeventsLinks
A sample PoC for container-aware exec events for osquery
☆24Updated last year
Alternatives and similar repositories for linuxevents
Users that are interested in linuxevents are comparing it to the libraries listed below
Sorting:
- Various utilities useful for developers writing BPF tools☆30Updated 2 years ago
- Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects☆85Updated 2 years ago
- Example program using eBPF to log data being based in using shell pipes☆41Updated 4 years ago
- A C++ library that parses debug information encoded in BTF format☆27Updated 2 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated 2 years ago
- This repository contains the companion code from the "All your tracing are belong to BPF" blog posts☆18Updated 2 years ago
- ☆58Updated 2 years ago
- ☆29Updated 6 years ago
- Virtual machine introspection library based on libvmi - parts of this work have been funded by Deutsche Forschungsgemeinschaft (DFG) – pr…☆30Updated 3 years ago
- Join the REVEN community. Ask questions, talk about reverse engineering, discuss REVEN, and show off your work!☆13Updated 3 years ago
- An Integrity-Check Monitoring Pintool☆58Updated 4 years ago
- Symbolic execution of LLVM IR traces for program understanding.☆27Updated 11 years ago
- Demonstrate ability to read memfd_secret() data from the kernel☆58Updated last year
- ☆52Updated 6 years ago
- ☆21Updated 4 years ago
- File Capability Extractor☆13Updated last month
- PoC multi-layer protector for ELF32 x86 binaries☆11Updated 3 years ago
- A Rust crate for parsing Windows user minidumps.☆40Updated last year
- Python interface for Binexport, the Bindiff export format☆17Updated last week
- Experiments involving the Windows Hypervisor Platform☆23Updated 5 years ago
- A system call interception tool☆58Updated 8 months ago
- Dr. Disassembler☆36Updated 3 years ago
- Some Rust bindings for Binary Ninja☆30Updated last year
- Intel x86 bare metal hypervisor for researching snapshot fuzzing ideas.☆168Updated 4 years ago
- Crystal Anti-Exploit Protection 2012☆37Updated 5 years ago
- Supporting Materials for “Symbolic Triage” blog post☆24Updated 2 years ago
- Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster☆29Updated 5 years ago
- hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer☆33Updated last year
- gopclntab finder and analyzer for Radare2☆21Updated 5 years ago
- MSR Project Freta☆77Updated last year