Lind-Project / safeposix-rust
Rust implementation of SafePOSIX
☆13Updated 2 months ago
Alternatives and similar repositories for safeposix-rust:
Users that are interested in safeposix-rust are comparing it to the libraries listed below
- Lind: Secure Lightweight Adaptive Isolation☆30Updated this week
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…☆64Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPF☆174Updated last year
- A CLI tool for creating secure by design/default source repos.☆25Updated 8 months ago
- Trace deep kernel events through eBPF and lsm hooks☆35Updated 4 years ago
- Linux Security Hardening for Confidential Compute☆66Updated 7 months ago
- POC for Phantom Attack☆82Updated 2 years ago
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆102Updated last year
- A file system events notifier based on eBPF☆66Updated 2 years ago
- ☆444Updated 8 months ago
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆227Updated 10 months ago
- ✨🔐 CNCF Fuzzers☆123Updated 2 months ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆74Updated last year
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.☆15Updated 3 years ago
- Publications from the eBPF foundation☆23Updated 5 months ago
- OCI hook to trace syscalls and generate a seccomp profile☆321Updated this week
- ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits☆129Updated 2 years ago
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆58Updated 2 years ago
- A collection of bypasses and exploits for eBPF-based cloud security.☆21Updated last year
- bpflock - eBPF driven security for locking and auditing Linux machines☆147Updated 3 years ago
- eBPF Standard Documentation☆44Updated 7 months ago
- This repository contains the source code related to the research paper titled "Temporal System Call Specialization for Attack Surface Red…☆36Updated 5 months ago
- COCONUT-SVSM☆150Updated last week
- Explore a live Linux kernel's memory using GDB☆114Updated 2 years ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated last month
- 🐝 Ransomware Detection using Machine Learning with eBPF for Linux.☆59Updated 5 months ago
- Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …☆153Updated this week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆31Updated this week
- find relevant security papers published in the top-4 conferences (S&P, USENIX, CCS, NDSS)☆185Updated 8 months ago
- Dectect syscall hooking using eBPF☆151Updated 2 years ago