zj1244 / kprobe_hook
使用kprobe获取sys_execve参数
☆12Updated 6 years ago
Alternatives and similar repositories for kprobe_hook:
Users that are interested in kprobe_hook are comparing it to the libraries listed below
- Peach Fuzzer 3.x☆21Updated 8 years ago
- Automatic reversed shell detecting and defensing☆51Updated 6 years ago
- 虚拟机带外内存监控☆14Updated 7 years ago
- Learning eBPF from zero to hero☆37Updated last year
- 通过Linux netlink NETLINK_CONNECTOR 协议实时进行监控本机进程情况。☆13Updated 5 years ago
- tcp stream dump with BPF filter rules | bidirection | domain☆48Updated 5 years ago
- https://www.cdxy.me/?p=806☆31Updated 5 years ago
- ☆12Updated 2 years ago
- Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)☆31Updated 2 years ago
- Resources for CloudNative security research☆32Updated 3 years ago
- Collate and collect binary related materials, including papers, tools, etc. Now,there are the following categories: 1、Fuzzing☆56Updated 5 years ago
- vArmor-ebpf is a specialized project dedicated to maintaining the BPF code utilized by vArmor.☆30Updated 2 weeks ago
- sAoccec something about ossec☆17Updated 11 years ago
- A IDAPython script for searching overflows by IDA.☆21Updated 7 years ago
- 基于docker虚拟化的恶意代码沙箱☆71Updated 6 years ago
- 基于JVM-Sandbox实现RASP安全监控防护☆52Updated last year
- tcppc: A simple honeypot to capture TCP/TLS/UDP payloads on ALL ports.☆35Updated 4 years ago
- ☆54Updated last year
- 企业级安全智能化实践☆69Updated 3 years ago
- ☆44Updated 4 years ago
- Works about detecting vulnerable using ML.☆83Updated 4 years ago
- ☆28Updated 3 years ago
- TLS 技术原理与 1.0协议旁路解密实现方法☆26Updated 6 years ago
- Useful tools for writing shellcode☆67Updated 4 years ago
- GO开发而成,用于NIDS HIDS 分析的规则引�擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测☆77Updated last month
- 基于行为的Ransomware检测原型☆40Updated 7 years ago
- 一个用于生成cve数据库的程序并提供简单的http协议查询接口☆28Updated 4 years ago
- DPDK-based packet capture tool☆17Updated 8 years ago
- 这是一个基于 Cuckoo 开源版本的沙箱的修订版本, 该版本完全为了适配国内软件环境所打造☆77Updated 2 years ago
- 一个HIDS agent端的demo☆17Updated 5 years ago