Linux #rootkit and #malware revealer
☆31Aug 1, 2024Updated last year
Alternatives and similar repositories for sunlight
Users that are interested in sunlight are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆29Sep 29, 2025Updated 7 months ago
- Linux BPF plugins for Volatility3☆23Jan 19, 2024Updated 2 years ago
- Simple root privilege escalation detection using eBPF 🐝☆35Feb 10, 2026Updated 2 months ago
- A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.☆12Jun 23, 2025Updated 10 months ago
- Read partition tables from GPT and basic MBR☆16Mar 10, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Tools and scripts to deploy and manage OpenRelik instances☆16Mar 23, 2026Updated last month
- sudo-parser is a tool to audit complex sudoers files☆18Nov 2, 2022Updated 3 years ago
- Slides and resources from MCTTP 2025 Talk☆70Oct 26, 2025Updated 6 months ago
- A command line Curses based json viewer and tabulator�☆30Aug 3, 2025Updated 8 months ago
- Simple CLI utility to save off an image from every webcam hooked into a mac☆14May 20, 2021Updated 4 years ago
- Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes☆12Sep 30, 2020Updated 5 years ago
- Some security by obscurity using port-jumping.☆14Aug 21, 2025Updated 8 months ago
- Better version of SharpPick☆14Aug 29, 2025Updated 8 months ago
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 7 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆18Jun 29, 2024Updated last year
- A simple rpc2socks alternative in pure Go.☆31Jul 8, 2024Updated last year
- Production-ready detection & response queries for osquery☆603Apr 22, 2026Updated last week
- ☆47Oct 27, 2023Updated 2 years ago
- Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption☆19Aug 5, 2022Updated 3 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- Packet Monkey is a tool to filter and classify PCAPs using Wireshark filters☆11Feb 27, 2026Updated 2 months ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆254Nov 18, 2024Updated last year
- ☆153Mar 31, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Fast lookup server for NSRL and other hash database used in digital forensic☆49Jan 26, 2026Updated 3 months ago
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,314Apr 16, 2026Updated 2 weeks ago
- A fast, deterministic, non-cryptographic hash for use in hash tables for Rust☆15Jan 12, 2021Updated 5 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- ☆23Jan 15, 2019Updated 7 years ago
- Got a bogus CVE someone got for a non-vuln? Please share here!☆25Jul 24, 2024Updated last year
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆108Apr 8, 2026Updated 3 weeks ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆69Apr 29, 2024Updated 2 years ago
- Credential Providers windows vista/7☆16Jun 3, 2014Updated 11 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ESF modular ingestion tool for development and research.☆38Dec 21, 2021Updated 4 years ago
- Read PostgreSQL data files without credentials - forensics, data recovery, and security research tool☆45Apr 14, 2026Updated 2 weeks ago
- A tool to start programs with admin rights.☆16Nov 18, 2025Updated 5 months ago
- ☆28Sep 4, 2024Updated last year
- POC tool to abuse windows server failover clusters☆56Aug 7, 2025Updated 8 months ago
- ☆11Dec 8, 2023Updated 2 years ago
- Forensic Artifact Collection Tool Matrix☆96Nov 9, 2024Updated last year