Lind-Project / safeposix-rust

Related projects: ⓘ

• Lind-Project / lind_project
  Lind: Secure Lightweight Adaptive Isolation
  ☆23Updated this week
• bpfverif / agni
  ☆12Updated this week
• willfindlay / bpfcontain-rs
  BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.
  ☆55Updated 2 years ago
• shamedgh / confine
  This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…
  ☆62Updated 2 years ago
• Gui774ume / krie
  Linux Kernel Runtime Integrity with eBPF
  ☆163Updated 9 months ago
• intel / ccc-linux-guest-hardening
  Linux Security Hardening for Confidential Compute
  ☆65Updated last week
• containers / oci-seccomp-bpf-hook
  OCI hook to trace syscalls and generate a seccomp profile
  ☆292Updated 3 weeks ago
• linux-lock / bpflock
  bpflock - eBPF driven security for locking and auditing Linux machines
  ☆136Updated 2 years ago
• lumontec / lsmtrace
  Trace deep kernel events through eBPF and lsm hooks
  ☆32Updated 3 years ago
• lockc-project / lockc
  Making containers more secure with eBPF and Linux Security Modules (LSM)
  ☆212Updated 3 months ago
• mit-ll / Cross-Language-Attacks
  ☆27Updated 2 years ago
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆71Updated last year
• shamedgh / temporal-specialization
  This repository contains the source code related to the research paper titled "Temporal System Call Specialization for Attack Surface Red…
  ☆33Updated 4 years ago
• cncf / cncf-fuzzing
  ✨🔐 CNCF Fuzzers
  ☆111Updated this week
• willfindlay / bpfbox
  🐝 BPFBox 📦 Exploring process confinement in eBPF
  ☆98Updated 8 months ago
• kinvolk / seccompagent
  agent for handling seccomp descriptors for container runtimes
  ☆41Updated 7 months ago
• intel-tools / srs
  GitHub Actions based repository scanning workflows with a primary goal of evaluating C & C++ repositories for risks.
  ☆17Updated 2 months ago
• vbpf / ebpf-verifier
  eBPF verifier based on abstract interpretation
  ☆375Updated this week
• cispa / CacheWarp
  Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…
  ☆53Updated last month
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆63Updated this week
• redcanaryco / ebpfmon
  ☆82Updated 2 months ago
• andrewstucki / bpf-lsm
  Example BPF program with LSM hooks
  ☆31Updated 3 years ago
• purs3lab / Argus
  ☆41Updated 2 months ago
• coconut-svsm / svsm
  COCONUT-SVSM
  ☆107Updated this week
• rexguowork / phantom-attack
  POC for Phantom Attack
  ☆79Updated 2 years ago
• kusaridev / skootrs
  A CLI tool for creating secure by design/default source repos.
  ☆24Updated last month
• dylandreimerink / edb
  An eBPF program debugger
  ☆193Updated 2 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆69Updated this week
• mebeim / systrack
  📡🐧 Linux kernel syscall implementation tracker
  ☆193Updated 3 months ago
• TomasPhilippart / ebpfangel
  Ransomware Detection using Machine Learning with eBPF for Linux.
  ☆43Updated 2 months ago