Lind-Project / safeposix-rust
Rust implementation of SafePOSIX
☆12Updated last week
Related projects: ⓘ
- Lind: Secure Lightweight Adaptive Isolation☆23Updated this week
- ☆12Updated this week
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆55Updated 2 years ago
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…☆62Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPF☆163Updated 9 months ago
- Linux Security Hardening for Confidential Compute☆65Updated last week
- OCI hook to trace syscalls and generate a seccomp profile☆292Updated 3 weeks ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆136Updated 2 years ago
- Trace deep kernel events through eBPF and lsm hooks☆32Updated 3 years ago
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆212Updated 3 months ago
- ☆27Updated 2 years ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆71Updated last year
- This repository contains the source code related to the research paper titled "Temporal System Call Specialization for Attack Surface Red…☆33Updated 4 years ago
- ✨🔐 CNCF Fuzzers☆111Updated this week
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆98Updated 8 months ago
- agent for handling seccomp descriptors for container runtimes☆41Updated 7 months ago
- GitHub Actions based repository scanning workflows with a primary goal of evaluating C & C++ repositories for risks.☆17Updated 2 months ago
- eBPF verifier based on abstract interpretation☆375Updated this week
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆53Updated last month
- Format agnostic SBOM tooling☆63Updated this week
- ☆82Updated 2 months ago
- Example BPF program with LSM hooks☆31Updated 3 years ago
- ☆41Updated 2 months ago
- COCONUT-SVSM☆107Updated this week
- POC for Phantom Attack☆79Updated 2 years ago
- A CLI tool for creating secure by design/default source repos.☆24Updated last month
- An eBPF program debugger☆193Updated 2 years ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆69Updated this week
- 📡🐧 Linux kernel syscall implementation tracker☆193Updated 3 months ago
- Ransomware Detection using Machine Learning with eBPF for Linux.☆43Updated 2 months ago