Lind-Project / lind_project
Lind: Secure Lightweight Adaptive Isolation
☆28Updated 5 months ago
Alternatives and similar repositories for lind_project:
Users that are interested in lind_project are comparing it to the libraries listed below
- Rust implementation of SafePOSIX☆13Updated last month
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…☆64Updated 2 years ago
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆101Updated last year
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Updated last year
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated last year
- Build custom Docker seccomp profiles for containers by finding syscalls it uses.☆89Updated 4 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Updated 3 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆146Updated 3 years ago
- Linux Security Hardening for Confidential Compute☆66Updated 6 months ago
- fuzzing framework based on libfuzzer and clang sanitizer☆165Updated 5 years ago
- A BPF-based syscall fault injector☆101Updated last year
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆74Updated this week
- Example BPF program with LSM hooks☆33Updated 4 years ago
- Static code analysis of refpolicy style SELinux policy☆42Updated last week
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆131Updated last month
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆18Updated this week
- Securing open-source package ecosystems by originating, validating, and augmenting build attestations.☆34Updated last week
- ☆22Updated 9 months ago
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.☆15Updated 3 years ago
- Trace deep kernel events through eBPF and lsm hooks☆35Updated 4 years ago
- Administrative utility for SEV-SNP☆30Updated 3 weeks ago
- agent for handling seccomp descriptors for container runtimes☆45Updated last year
- Linux Kernel Runtime Integrity with eBPF☆173Updated last year
- Collection of syzkaller bug reproducers for Linux☆44Updated 2 years ago
- Supply Chain Query Tool☆13Updated 2 years ago
- Linux kernel - See Landlock issues☆39Updated 3 months ago
- Example program using eBPF to log data being based in using shell pipes☆41Updated 4 years ago
- ☆16Updated 2 years ago
- Ebpf faqs, samples, tooling☆44Updated 3 years ago
- eBPF - extended Berkeley Packet Filter tooling☆123Updated 2 years ago