Your Obfuscation is Just Math to Me: An eBPF Guillotine in the Linux Kernel

The Era of Signature-Based Defense is Dead.

Stop relying on outdated blacklists. I built Realm 2.5, an eBPF-powered fortress that doesn't care about your "clever" payloads.

🛡️ The Mechanism: Mathematical Sentencing

Most firewalls wait for the CPU to process the packet. Realm acts at the XDP (Express Data Path) layer, the absolute frontline of the Linux kernel. Before your packet even breathes the air of the userspace, it meets the Entropy Judge.

I calculate the Shannon Entropy (H) of every single payload in real-time using the formula:
H = -Σ P(x_i) log2 P(x_i)

If your chaos exceeds 4.2, my kernel probe assumes you are hiding something—obfuscation, shellcode, or randomized junk. The verdict? Instant Decapitation. Your IP is dropped by the XDP driver before it can even finish the handshake.

🕸️ The Labyrinths (Honeypots)

I have left "doors" open for the greedy. If you touch my 2375 (Docker), 2222 (SSH), or 6379 (Redis) ports, you aren't just logged—you are marked. The eBPF maps will remember your "sin" and silence you across the entire network.

👁️ The Execution Archive

My dashboard isn't a UI; it's a graveyard. Every failed attempt, every "clever" script, is archived here for the world to see in a high-contrast Cyberpunk aesthetic.

⚔️ The Ultimatum

I’ve deployed this on a GCP instance. I know there are wizards out there who think they can bypass the laws of entropy.

• Live Target: http://35.212.157.202/
• Source: https://github.com/xingkong0508/realm

I am ready for this Realm to fall. I have analyzed every line of my Go and C code, and I am prepared for the inevitable breach.

But until you prove me wrong, I remain the master of this kernel space. Fearless. Unyielding.

Do your worst. I’m waiting in the logs.