procscope — Zero-overhead eBPF process tracer for Linux malware triage and incident response. Traces syscalls, network, and file events per-process without strace overhead.
GitHub Trending·
Originalartikel lesen bei GitHub TrendingZero-overhead eBPF process tracer for Linux malware triage and incident response. Traces syscalls, network, and file events per-process without strace overhead. · Sprache: C · Topics: bpf, cli, container-security, ebpf, forensics, golang · ⭐ 16 Stars
MITRE ATT&CK Kill Chain (2 Techniken)
Resource Development
Themen
bpfclicontainer-securityebpfforensicsgolangincident-responsekali-linuxkubernetes-securitylinux-security