Linux kernel source tree

The fastest path to AI-powered full stack observability, even for lean teams.

For developers, who are building real-time data-driven applications, Redis is the preferred, fastest, and most feature-rich cache, data structure server, and document and vector query engine.

OBS Studio - Free and open source software for live streaming and screen recording

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

UNIX-like reverse engineering framework and command-line toolset

BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Small and highly portable detection tests based on MITRE's ATT&CK.

🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

🚀 A fast WebAssembly interpreter and the most universal WASM runtime

开发内功修炼

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

A low-power E-Paper weather display powered by an ESP32 microcontroller. Utilizes the OpenWeatherMap API.

WebAssembly Micro Runtime (WAMR)

Unlock vGPU functionality for consumer grade GPUs.

Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient.

CTF竞赛权威指南

eBPF-based Security Observability and Runtime Enforcement

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

american fuzzy lop - a security-oriented fuzzer

eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

A next-generation cloud native kernel designed to unlock best-in-class performance, security primitives and efficiency savings.

Source code of a multiple series of tutorials about the hypervisor. Available at: https://rayanfam.com/tutorials

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

一个深挖 Linux 内核的新功能特性，以 io_uring, cgroup, ebpf, llvm 为代表，包含开源项目，代码案例，文章，视频，架构脑图等

Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

Handy, High performance, ModSecurity compatible Nginx firewall module & 方便、高性能、兼容 ModSecurity 的 Nginx 防火墙模块