ebutwill's recent timeline updates

ebutwill's repos on GitHub

601 watchers

AgentSmith-HIDS

By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.

Go · 244 watchers

AgentSmith-HUB

Enterprise Security Data Pipeline Platform (SDPP) — Real-Time Threat Detection + Deeply Integrated LLM Agents

Go · 6 watchers

mmap_ringbuffer

A high-performance, memory-mapped ring buffer implementation in Go, designed for efficient inter-process or inter-thread communication. This library provides a lock-free (with minimal locking) ring buffer backed by memory-mapped files, making it suitable for high-throughput scenarios.

2 watchers

tracee

Linux Runtime Security and Forensics using eBPF

1 watchers

awesome-bro

Useful resources for Bro(http://bro.org/)

1 watchers

IntentSmith

Java · 1 watchers

JSqlParser

JSqlParser parses an SQL statement and translate it into a hierarchy of Java classes. The generated hierarchy can be navigated using the Visitor Pattern

C · 1 watchers

nDPI

Open Source Deep Packet Inspection Software Toolkit

C · 1 watchers

Reading-and-comprehense-linux-Kernel-network-protocol-stack

linux内核网络协议栈源码阅读分析注释--带详尽中文分析注释以及相关流程分析调用注释，对理解分析内核协议栈源码很有帮助

C · 1 watchers

Reptile

LKM Linux rootkit

0 watchers

Analysis-Tools

恶意软件分析套件

0 watchers

analysis_claude_code

本仓库包含对 Claude Code v1.0.33 进行逆向工程的完整研究和分析资料。包括对混淆源代码的深度技术分析、系统架构文档，以及重构 Claude Code agent 系统的实现蓝图。主要发现包括实时 Steering 机制、多 Agent 架构、智能上下文管理和工具执行管道。该项目为理解现代 AI agent 系统设计和实现提供技术参考。

PHP · 0 watchers

awsome-webshell

webshell样本大合集。收集各种webshell用于webshell分析与发现。——www.shellpub.com

Go · 0 watchers

beats

:tropical_fish: Beats - Lightweight shippers for Elasticsearch & Logstash

0 watchers

Benchmarks

常用服务器、数据库、中间件安全配置基线 - 基本包括了所有的操作系统、数据库、中间件、网络设备、浏览器，安卓、IOS、云的安全配置 For benchmarks.cisecurity.org

0 watchers

Blog

Python · 0 watchers

cobra

Source Code Security Audit (源代码安全审计)

0 watchers

cvc

TeX · 0 watchers

deeplearningbook-chinese

Deep Learning Book Chinese Translation

0 watchers

EBWi11

Config files for my GitHub profile.

0 watchers

Elkeid

Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.

HTML · 0 watchers

Escan

0 watchers

facade

Python · 0 watchers

flare-fakenet-ng

FakeNet-NG - Next Generation Dynamic Network Analysis Tool

Go · 0 watchers

go-common

哔哩哔哩 bilibili 网站后台工程源码

0 watchers

grok

simple library to use/parse grok patterns with go (100%)

0 watchers

hc-vault-util

JavaScript · 0 watchers

hexo-admin

An Admin Interface for Hexo

Python · 0 watchers

ivre

Network recon framework.

0 watchers

Java-Deserialization-Cheat-Sheet

The cheat sheet about Java Deserialization vulnerabilities

0 watchers

kernel-siglog

Linux signal tracing module for kernels without ftrace

C · 0 watchers

kernelpop

kernel privilege escalation enumeration and exploitation framework

0 watchers

kprobe-template

kprobes template

0 watchers

linux

Linux kernel source tree

C · 0 watchers

lkm-rootkit

an lkm rootkit support x86/64,arm,mips

Java · 0 watchers

marshalsec

0 watchers

Micro8

Scala · 0 watchers

mmlspark

Microsoft Machine Learning for Apache Spark

Shell · 0 watchers

Nameles

Open source entropy based invalid traffic detection and pre-bid filtering.

Python · 0 watchers

NeoPI

C · 0 watchers

ossec-hids

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

Python · 0 watchers

packet_analysis

IP/TCP/UDP数据包分析及解析

HTML · 0 watchers

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

JavaScript · 0 watchers

Pcap-Analyzer

Python编写的可视化的离线数据包分析器

C · 0 watchers

pmon

Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)