Hades

Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)

APACHE-2.0 License

Stars
278
View Code on GitHub
Ecosystems: eBPF, Linux, Rust, Go

Bot releases are hidden (Show)

Hades - Hades-eBPF-Driver v1.0.0 release

Published by chriskaliX about 2 years ago

Note

CO-RE version is available. You can run on your machine if BTF is supported.

Features

  • kernel hook detection (by comparing the address)
  • 14 hooks for security detection
  • many helpful fields almost like Elkeid

Contributors

  • @rockingl contributed multiple patches #44 #45 #48 #50 #51
  • @dark-lbp made his first contribution #47

Checksum

md5 8381c509f2bc7bad341a5f31720ae426

Package Rankings
Top 6.82% on Proxy.golang.org