A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
Why do you think that https://github.com/airbus-cert/dirtypipe-ebpf_detection is a good alternative to TripleCross
A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
Why do you think that https://github.com/airbus-cert/dirtypipe-ebpf_detection is a good alternative to TripleCross