Hades-eBPF-Driver v1.0.0 release
Note
CO-RE version is available. You can run on your machine if BTF is supported.
Features
- kernel hook detection (by comparing the address)
- 14 hooks for security detection
- many helpful fields almost like Elkeid
Contributors
- @rockingl contributed multiple patches #44 #45 #48 #50 #51
- @dark-lbp made his first contribution #47
Checksum
md5 8381c509f2bc7bad341a5f31720ae426
Contributors
dark-lbp and rockingl