ebutwill 最近的时间轴更新

AgentSmith-HIDS By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.

AgentSmith-HUB Enterprise Security Data Pipeline Platform (SDPP) with Integrated Real-Time Threat Detection Engine

mmap_ringbuffer A high-performance, memory-mapped ring buffer implementation in Go, designed for efficient inter-process or inter-thread communication. This library provides a lock-free (with minimal locking) ring buffer backed by memory-mapped files, making it suitable for high-throughput scenarios.

tracee Linux Runtime Security and Forensics using eBPF

JSqlParser JSqlParser parses an SQL statement and translate it into a hierarchy of Java classes. The generated hierarchy can be navigated using the Visitor Pattern

nDPI Open Source Deep Packet Inspection Software Toolkit

Reading-and-comprehense-linux-Kernel-network-protocol-stack linux内核网络协议栈源码阅读分析注释--带详尽中文分析注释以及相关流程分析调用注释，对理解分析内核协议栈源码很有帮助

Reptile LKM Linux rootkit

Analysis-Tools 恶意软件分析套件

analysis_claude_code 本仓库包含对 Claude Code v1.0.33 进行逆向工程的完整研究和分析资料。包括对混淆源代码的深度技术分析、系统架构文档，以及重构 Claude Code agent 系统的实现蓝图。主要发现包括实时 Steering 机制、多 Agent 架构、智能上下文管理和工具执行管道。该项目为理解现代 AI agent 系统设计和实现提供技术参考。

awsome-webshell webshell样本大合集。收集各种webshell用于webshell分析与发现。www.shellpub.com

beats :tropical_fish: Beats - Lightweight shippers for Elasticsearch & Logstash

Benchmarks 常用服务器、数据库、中间件安全配置基线 - 基本包括了所有的操作系统、数据库、中间件、网络设备、浏览器，安卓、IOS、云的安全配置 For benchmarks.cisecurity.org

Blog

cobra Source Code Security Audit (源代码安全审计)

cvc

deeplearningbook-chinese Deep Learning Book Chinese Translation

EBWi11 Config files for my GitHub profile.

Elkeid Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.

Escan

facade

flare-fakenet-ng FakeNet-NG - Next Generation Dynamic Network Analysis Tool

go-common 哔哩哔哩 bilibili 网站后台工程 源码

grok simple library to use/parse grok patterns with go (100%)

hc-vault-util

hexo-admin An Admin Interface for Hexo

ivre Network recon framework.

Java-Deserialization-Cheat-Sheet The cheat sheet about Java Deserialization vulnerabilities

kernel-siglog Linux signal tracing module for kernels without ftrace

kernelpop kernel privilege escalation enumeration and exploitation framework

kprobe-template kprobes template

linux Linux kernel source tree

lkm-rootkit an lkm rootkit support x86/64,arm,mips

marshalsec

Micro8

mmlspark Microsoft Machine Learning for Apache Spark

Nameles Open source entropy based invalid traffic detection and pre-bid filtering.

NeoPI

ossec-hids OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

packet_analysis IP/TCP/UDP数据包分析及解析

PayloadsAllTheThings A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Pcap-Analyzer Python编写的可视化的离线数据包分析器

pmon Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)

prism PRISM is an user space stealth reverse shell backdoor, written in pure C.

research-rootkit LibZeroEvil & the Research Rootkit project.

Scanners-Box The toolbox of open source scanners - 安全行业从业者自研开源扫描器合辑

Sec-Box information security Tools Box （信息安全工具集合）

security-guide-for-developers Security Guide for Developers (实用性开发人员安全须知)

svn_git_scanner 用于扫描git，svn泄露

URL-Detector A Java library to detect and normalize URLs in text

Wappalyzer Cross-platform utility that uncovers the technologies used on websites.

XSS-Filter-Evasion-Cheat-Sheet-CN XSS_Filter_Evasion_Cheat_Sheet 中文版

ebutwill V2EX 第 253983 号会员，加入于 2017-09-12 17:28:26 +08:00