MalSynGen

Hardens eBPF tools against privileged attackers via policy-based access controls

A blockchain node anomaly detection framework combining ebpf and fine-tuned LLM

eBPF-P.A.T.R.O.L: Protective Agent for Threat Recognition and Overreach Limitation using eBPF in Containerized and Virtualized Environments

😼 优雅地使用基于 clash/mihomo 的代理环境

Paper List for Personalized Federated Learning (PFL)

Master Federated Learning in 2 Hours—Run It on Your PC!

This repository host my FLOps Thesis Code

For making notes when researching and studying.

A constant throughput, correct latency recording variant of wrk

An experimental interactive security sandbox for Linux

Anomaly detection in cybersecurity using Autoencoders and VAEs

ETrace is a syscall tracing utility powered by eBPF

Gathering benchmarking data for BPFContain

The shortest yet efficient Python implementation of the sequential pattern mining algorithm PrefixSpan, closed sequential pattern mining algorithm BIDE, and generator sequential pattern mining algo…

Image-based Intrusion Detection System using Convolutional Neural Networks with NSL-KDD dataset. Converts network traffic features into grayscale images for deep learning classification.

FIDe is an fully in-kernel anomaly detection/mitigation framework based on eBPF.

Flonwix is a graphical network traffic analyzer for Linux-based systems that relies on ptcpdump

Linux应急处置/信息搜集/漏洞检测工具，支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查

NFStream: a Flexible Network Data Analysis Framework.

Real-Time Network Intrusion Detection Framework

eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.

Journal Article: Telematics and Informatics Reports

Journal Article: IEEE Access

Welcome this is a comprehensive repository dedicated to advancing Network Intrusion Detection Systems (NIDS) through the power of Machine Learning (ML) and Deep Learning (DL). This project aims to …

Kernel-level Linux security framework using eBPF/BCC and Python. Achieves 95%+ detection accuracy with minimal CPU overhead. Features cloud-integrated CLI dashboard for automated threat remediation…

Anomaly detection models for InfraSight. ML-based syscall frequency & resource usage profiling.

InfraSight is a modular eBPF-based observability platform for Linux and Kubernetes environments. It provides deep visibility into system activity using custom eBPF programs, a centralized ClickHous…