Lind-Project / lind_project
Lind: Secure Lightweight Adaptive Isolation
β24Updated last month
Related projects β
Alternatives and complementary repositories for lind_project
- Rust implementation of SafePOSIXβ12Updated last month
- π BPFBox π¦ Exploring process confinement in eBPFβ101Updated 10 months ago
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable thanβ¦β62Updated 2 years ago
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.β56Updated 2 years ago
- β18Updated 4 years ago
- Trace deep kernel events through eBPF and lsm hooksβ34Updated 3 years ago
- eBPF based syscalls, files and network events tracing frameworkβ89Updated 4 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploitsβ20Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPFβ164Updated 11 months ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)β20Updated last year
- bpflock - eBPF driven security for locking and auditing Linux machinesβ136Updated 2 years ago
- fuzzing framework based on libfuzzer and clang sanitizerβ164Updated 5 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.β113Updated last year
- Build custom Docker seccomp profiles for containers by finding syscalls it uses.β89Updated 4 years ago
- agent for handling seccomp descriptors for container runtimesβ42Updated 9 months ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and oβ¦β71Updated 3 weeks ago
- β¨π CNCF Fuzzersβ113Updated this week
- A file system events notifier based on eBPFβ57Updated last year
- eBPF - extended Berkeley Packet Filter toolingβ122Updated 2 years ago
- An eBPF program debuggerβ197Updated 2 years ago
- A Java implementation of in-toto runlibβ12Updated 3 months ago
- Example BPF program with LSM hooksβ31Updated 3 years ago
- sget is a keyless safe script retrieval and execution toolβ18Updated 2 years ago
- This repository contains the source code related to the research paper titled "Temporal System Call Specialization for Attack Surface Redβ¦β34Updated last week
- β427Updated 3 months ago
- Source-code based coverage for eBPF programs actually running in the Linux kernelβ128Updated 2 years ago
- OCI hook to trace syscalls and generate a seccomp profileβ303Updated last week
- β23Updated 3 years ago
- β16Updated 2 weeks ago
- β20Updated 5 months ago