Alternatives and similar repositories for cbsensor-linux-kmod:

Users that are interested in cbsensor-linux-kmod are comparing it to the libraries listed below

• vmware-archive / cbsensor-linux-bpf
  Linux endpoint events for BPF enabled systems
  ☆24Updated 2 years ago
• therealdreg / lsrootkit
  Rootkit Detector for UNIX
  ☆61Updated last year
• vmware / kernel-event-collector-module
  This is the Linux kernel module event collector for the Carbon Black Cloud.
  ☆18Updated last year
• Gui774ume / krie
  Linux Kernel Runtime Integrity with eBPF
  ☆173Updated last year
• conix-security / machoke
  ☆51Updated 6 years ago
• Velocidex / oleparse
  Golang parser for OLE files
  ☆31Updated 2 weeks ago
• elastic / siglearn
  Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
  ☆17Updated last month
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆117Updated last year
• botherder / go-autoruns
  Collect autorun records from running system
  ☆61Updated 3 years ago
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆20Updated 2 weeks ago
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆108Updated 3 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆70Updated 2 years ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆103Updated 8 months ago
• faisalusuf / ThreatIntelligence
  Tracking APT IOCs
  ☆25Updated 4 years ago
• Northern-Lights / yara-parser
  Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
  ☆83Updated 2 years ago
• Gui774ume / ebpfkit-monitor
  ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
  ☆126Updated 2 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated 10 months ago
• avast / yls
  YARA Language Server
  ☆69Updated this week
• 0x00000013 / huakiwi
  eBPF-based EDR for Linux
  ☆17Updated 7 months ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 3 years ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆35Updated 8 years ago
• mbrengel / yarix
  ☆58Updated 4 years ago
• bnbdr / swisscheese
  Exploits for YARA 3.7.1 & 3.8.1
  ☆31Updated 6 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 8 years ago
• Cisco-Talos / CASC
  ☆42Updated 6 years ago
• 0x71 / cuckoo-linux
  Linux malware analysis based on Cuckoo Sandbox.
  ☆39Updated last year
• rsabir / bro-dsniff
  A dsniff project using bro
  ☆10Updated 9 years ago
• hslatman / awesome-malware-analysis
  A curated list of awesome malware analysis tools and resources
  ☆45Updated 4 years ago
• nao-sec / tknk_scanner
  Community-based integrated malware identification system
  ☆82Updated 2 years ago
• elfmaster / kprobe_rootkit
  Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)
  ☆37Updated 10 years ago