yasindce1998 / KubeDagger
Kubernetes offensive framework built in eBPF
☆37Updated last year
Alternatives and similar repositories for KubeDagger:
Users that are interested in KubeDagger are comparing it to the libraries listed below
- ☆67Updated last month
- Use eBPF to inject chaos into local processes☆64Updated 6 months ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆71Updated last year
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆54Updated 3 months ago
- Open Source eBPF Malware Analysis Framework☆47Updated 4 months ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster☆36Updated 3 years ago
- Publications from the eBPF foundation☆22Updated 4 months ago
- VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF☆155Updated 6 months ago
- ☆86Updated 8 months ago
- ☆11Updated last month
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆127Updated 2 years ago
- An eBPF detection program for CVE-2022-0847☆28Updated 2 years ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 6 months ago
- Linux Kernel Runtime Integrity with eBPF☆172Updated last year
- Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…☆58Updated this week
- Exploit for CVE-2021-25741 vulnerability☆28Updated 3 years ago
- ☆25Updated 10 months ago
- A collection of projects demonstrating various commandline cloaking techniques on Linux☆57Updated 2 years ago
- kubernetes rootkit☆31Updated last year
- A replacement for "kubectl exec" that works over WebSocket connections.☆36Updated 11 months ago
- ☆31Updated 2 years ago
- This tool have the power to hide any PID/directory in the Linux kernel☆23Updated 6 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆80Updated last year
- egrets monitors egress☆46Updated 4 years ago
- Kit for building Falco drivers: kernel modules or eBPF probes☆65Updated this week
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆73Updated 10 months ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago