vmware-archive / cbsensor-linux-kmod
Linux Kernel module for Carbon Black EDR
☆12Updated 4 years ago
Alternatives and similar repositories for cbsensor-linux-kmod:
Users that are interested in cbsensor-linux-kmod are comparing it to the libraries listed below
- Linux endpoint events for BPF enabled systems☆24Updated 2 years ago
- Rootkit Detector for UNIX☆61Updated last year
- This is the Linux kernel module event collector for the Carbon Black Cloud.☆18Updated last year
- Linux Kernel Runtime Integrity with eBPF☆173Updated last year
- ☆51Updated 6 years ago
- Golang parser for OLE files☆31Updated 2 weeks ago
- Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"☆17Updated last month
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated last year
- Collect autorun records from running system☆61Updated 3 years ago
- Go implementation of the Community ID flow hashing standard☆20Updated 2 weeks ago
- Symbol hash for ELF files☆108Updated 3 years ago
- Alternative YARA scanning engine☆70Updated 2 years ago
- Red Canary's eBPF Sensor☆103Updated 8 months ago
- Tracking APT IOCs☆25Updated 4 years ago
- Tools for parsing rulesets using the exact grammar as YARA. Written in Go.☆83Updated 2 years ago
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆126Updated 2 years ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated 10 months ago
- YARA Language Server☆69Updated this week
- eBPF-based EDR for Linux☆17Updated 7 months ago
- Plugin providing AF_XDP support for Bro.☆14Updated 3 years ago
- malware-traffic-analysis.net PCAPs repository.☆35Updated 8 years ago
- ☆58Updated 4 years ago
- Exploits for YARA 3.7.1 & 3.8.1☆31Updated 6 years ago
- zer0m0n driver for cuckoo sandbox☆87Updated 8 years ago
- ☆42Updated 6 years ago
- Linux malware analysis based on Cuckoo Sandbox.☆39Updated last year
- A dsniff project using bro☆10Updated 9 years ago
- A curated list of awesome malware analysis tools and resources☆45Updated 4 years ago
- Community-based integrated malware identification system☆82Updated 2 years ago
- Linux kernel rootkit using kprobes (From http://phrack.org/issues/67/6.html)☆37Updated 10 years ago