GitHub topics: rootkit-detection
aidenateagain/ghostscan
🔍 Conduct a fast, one-shot sweep for Linux incident response, collecting actionable leads from various system components with ease.
Language: Rust - Size: 1.36 MB - Last synced at: about 9 hours ago - Pushed at: about 11 hours ago - Stars: 0 - Forks: 0
gustavo-iniguez-goya/decloaker
A simple tool to uncover files, directories, and connections hidden by malware.
Language: C - Size: 876 KB - Last synced at: about 11 hours ago - Pushed at: about 13 hours ago - Stars: 0 - Forks: 0
Farhan-himel-malik/sharpeye
SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System
Language: Python - Size: 420 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 2 - Forks: 0
exe47/sandfly-kernel-module-decloak
🔍 Detect hidden kernel modules and rootkits using the sandfly-kernel-module-decloak script for enhanced Linux security and threat analysis.
Language: Shell - Size: 1.29 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 0 - Forks: 0
h2337/ghostscan
A modern, Rust-powered Linux scanner that unmasks hidden rootkits, stealthy eBPF tricks, and ghost processes in one fast sweep (45+ scanners)
Language: Rust - Size: 80.1 KB - Last synced at: 23 days ago - Pushed at: about 1 month ago - Stars: 92 - Forks: 2
ait-aecid/rootkit-detection-ebpf-time-trace
Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.
Language: Python - Size: 118 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 8 - Forks: 3
CYBER-MRINAL/LINUX-DEFENDER
Linux-Defender 🛡️ A robust Linux hardening script for securing your system in one shot ⚙️🔐 ✅ Checks for rootkits, malware, and suspicious activity 🔥 Configures firewall, antivirus, and audit tools 🎯 Supports Arch, Debian, Kali, and Parrot OS 🕵️♂️ Includes kali-anonsurf support for anonymous browsing on Kali
Language: Shell - Size: 67.4 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 2 - Forks: 0
FromPartsUnknown/Cabbage
Cabbage is a simple python-based wrapper designed to automate and simplify post-mortem analysis of Solaris 10 kernel crash dumps and uncover evidence of rootkits and malicious activity.
Language: Python - Size: 28.3 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0
sgInnora/sharpeye
SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System
Language: Python - Size: 566 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 79 - Forks: 1
n03stalg1a/Device-Security-Audit
Device-Security-Audit is a Python-based security audit tool that helps assess and enhance the security of your systems. It includes checks for Docker container vulnerabilities, rootkit detection, network traffic monitoring, and cloud and Kubernetes security. With customizable options and parallel task execution, it's simply the best.
Language: Python - Size: 7.81 KB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0
arec1b0/Rootkit-Detector
Kernel-based rootkit detection tool with modules for detecting hidden processes, files, and kernel anomalies.
Language: C - Size: 39.1 KB - Last synced at: 7 months ago - Pushed at: 11 months ago - Stars: 0 - Forks: 1
