Alternatives and similar repositories for docker-sec

Users that are interested in docker-sec are comparing it to the libraries listed below

• 2m4t / LiCShield
  ☆11Updated 9 years ago
• willfindlay / bpfcontain-rs
  BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.
  ☆59Updated 3 years ago
• shamedgh / confine
  This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…
  ☆65Updated 3 years ago
• saBPF-project / sabpf-kernel
  ☆28Updated 3 years ago
• Asbatel / ContainerHIDS
  Contextualizing System Calls in Containers for Anomaly-Based Intrusion Detection - CCSW'22
  ☆23Updated 2 years ago
• CamFlow / camflow-dev
  Generates kernel patch for CamFlow Linux Provenance Capture.
  ☆27Updated last year
• seclab-stonybrook / eaudit
  eAudit suite for recording provenance-related system calls on Linux
  ☆13Updated last year
• lwyeluo / Container-IMA
  For paper Container-IMA: https://www.usenix.org/system/files/raid2019-luo.pdf
  ☆11Updated 5 years ago
• ZJU-SEC / AbstractResourceAttack
  This repository is used to analysis the shared resources of different containers
  ☆30Updated 10 months ago
• falcosecurity / libs
  libsinsp, libscap, the kernel module driver, and the eBPF driver sources
  ☆286Updated this week
• CN-TU / machine-learning-in-ebpf
  This repository contains the code for the paper "A flow-based IDS using Machine Learning in eBPF", Contact: Maximilian Bachl
  ☆103Updated 3 weeks ago
• inclavare-containers / inclavare-containers
  A novel container runtime, aka confidential container, for cloud-native confidential computing and enclave runtime ecosystem.
  ☆621Updated 2 years ago
• asterinas / jinzhao-attest
  Jinzhao Attest provides unified attestation workflow for TEE compatibility, usability and security.
  ☆35Updated last year
• SOFAEnclave / enclave-configuration-service
  AECS(Attestation based Enclave Configuration Service)
  ☆14Updated last year
• ashish-gehani / SPADE
  SPADE: Support for Provenance Auditing in Distributed Environments
  ☆186Updated this week
• a18499 / KubAnomaly_DataSet
  dataSet for kubAnomaly model
  ☆20Updated 2 years ago
• willfindlay / bpfbox
  🐝 BPFBox 📦 Exploring process confinement in eBPF
  ☆105Updated last year
• rssys / shard
  ☆13Updated 3 years ago
• acising / KellectAgent-Linux
  linux kernel event log collector by ebpf
  ☆34Updated last year
• smcdef / kprobe-template
  kprobes template
  ☆58Updated 4 years ago
• ratel-enclave / ratel
  Ratel - a new framework for instruction-level interposition on enclaved applications
  ☆23Updated 2 years ago
• jun-zeng / Audit-log-analysis
  Have fun with audit log analysis :)
  ☆152Updated last year
• ccc-certifier-framework / certifier-framework-for-confidential-computing
  The Confidential Computing Certifier Framework consists of a client API called the Certifier-API and server-based policy evaluation calle…
  ☆68Updated this week
• AliyunContainerService / sgx-device-plugin
  Kubernetes Device Plugin for Intel SGX
  ☆74Updated 3 months ago
• asterinas / jinzhao-disk
  Jinzhao Disk (JinDisk) is a log-structured secure block device for TEEs. This repo is JinDisk's Linux version.
  ☆36Updated 2 years ago
• OpenCloudOS / community
  这是OpenCloudOS社区创始委员会的工作区
  ☆18Updated 3 years ago
• JaewonHur / sev-snp-gpu
  ☆14Updated 5 months ago
• OpenCloudOS / fuse-extent
  This project is a fuse extent, which contains fuse-crash-recovery framework and fuse-base-ebpf performance improvement.
  ☆26Updated 2 years ago
• gramineproject / gramine-tdx
  A library OS for Linux multi-process applications, with Intel TDX support (experimental)
  ☆40Updated this week
• LID-DS / LID-DS
  LID-DS is an intrusion detection data simulation framework.
  ☆50Updated 3 months ago