Alternatives and similar repositories for docker-sec

Users that are interested in docker-sec are comparing it to the libraries listed below

• 2m4t / LiCShield
  ☆11Updated 9 years ago
• willfindlay / bpfcontain-rs
  BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.
  ☆59Updated 3 years ago
• shamedgh / confine
  This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…
  ☆70Updated 3 years ago
• lwyeluo / Container-IMA
  For paper Container-IMA: https://www.usenix.org/system/files/raid2019-luo.pdf
  ☆12Updated 5 years ago
• inclavare-containers / inclavare-containers
  A novel container runtime, aka confidential container, for cloud-native confidential computing and enclave runtime ecosystem.
  ☆630Updated 2 years ago
• Asbatel / ContainerHIDS
  Contextualizing System Calls in Containers for Anomaly-Based Intrusion Detection (CHIDS) - CCSW'22
  ☆26Updated 2 years ago
• CamFlow / camflow-dev
  Generates kernel patch for CamFlow Linux Provenance Capture.
  ☆29Updated 2 years ago
• gramineproject / examples
  Sample applications configs for Gramine
  ☆32Updated this week
• a18499 / KubAnomaly_DataSet
  dataSet for kubAnomaly model
  ☆20Updated 2 years ago
• JaewonHur / sev-snp-gpu
  ☆14Updated 11 months ago
• StanPlatinum / Deflection
  Practical and Efficient in-TEE Verification of Privacy Compliance
  ☆46Updated last year
• saBPF-project / sabpf-kernel
  ☆28Updated 4 years ago
• seclab-stonybrook / eaudit
  eAudit suite for recording provenance-related system calls on Linux
  ☆17Updated 3 weeks ago
• falcosecurity / libs
  libsinsp, libscap, the kernel module driver, and the eBPF driver sources
  ☆301Updated this week
• ZJU-SEC / AbstractResourceAttack
  This repository is used to analysis the shared resources of different containers
  ☆31Updated last year
• benhaz1024 / raspbian-tee
  Raspbian with OP-TEE support.
  ☆30Updated 6 years ago
• amrabed / strace-docker
  Trace system calls from Docker containers running on the system
  ☆32Updated 2 years ago
• asterinas / jinzhao-attest
  Jinzhao Attest provides unified attestation workflow for TEE compatibility, usability and security.
  ☆36Updated 2 years ago
• asterinas / jinzhao-disk
  Jinzhao Disk (JinDisk) is a log-structured secure block device for TEEs. This repo is JinDisk's Linux version.
  ☆36Updated 2 years ago
• gramineproject / gramine-tdx
  A library OS for Linux multi-process applications, with Intel TDX support (experimental)
  ☆46Updated last week
• OpenCloudOS / community
  这是OpenCloudOS社区创始委员会的工作区
  ☆18Updated 3 years ago
• lumontec / lsmtrace
  Trace deep kernel events through eBPF and lsm hooks
  ☆42Updated 5 years ago
• rssys / shard
  ☆13Updated 4 years ago
• Gui774ume / network-security-probe
  A process level network security monitoring and enforcement project for Kubernetes, using eBPF
  ☆44Updated 5 years ago
• ccc-certifier-framework / certifier-framework-for-confidential-computing
  The Confidential Computing Certifier Framework consists of a client API called the Certifier-API and server-based policy evaluation calle…
  ☆72Updated this week
• SOFAEnclave / enclave-configuration-service
  AECS(Attestation based Enclave Configuration Service)
  ☆14Updated 2 years ago
• HyperEnclave / atc22-ae
  ☆32Updated 3 years ago
• svsm-vtpm / linux-svsm
  Linux SVSM (Secure VM Service Module) for secure x86 virtualization in Rust
  ☆10Updated 2 years ago
• intel-staging / tdx
  ☆94Updated last month
• TwinVisor / twinvisor-prototype
  ☆22Updated 3 years ago