NationalSecurityAgency / seabeeLinks
Hardens eBPF tools against privileged attackers via policy-based access controls
☆39Updated this week
Alternatives and similar repositories for seabee
Users that are interested in seabee are comparing it to the libraries listed below
Sorting:
- [Experimental] jail for Go modules☆93Updated last week
- A project to collect eBPF verifier errors and how they can be resolved☆40Updated 7 months ago
- 🔍 Seccomp profiling and function-level tracing tool.☆160Updated 2 months ago
- OCI hook to trace syscalls and generate a seccomp profile☆329Updated 2 weeks ago
- A tool to help programmers debug and analyze Linux Kernel BPF verification failures.☆42Updated 2 weeks ago
- A tool for in-depth analysis of container checkpoints☆119Updated 2 weeks ago
- [Soft-deprecated] Reproducible apt/dnf/apk/pacman, with content-addressing☆110Updated last year
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆230Updated last year
- TC, XDP, KProbe and CGroup eBPF based simple Ethernet interface traffic monitor and reporting tool☆116Updated last week
- A replacement for "kubectl exec" that works over WebSocket connections.☆40Updated last year
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆52Updated 2 weeks ago
- Shape your traffic the BPF way☆79Updated 2 years ago
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆46Updated 5 months ago
- A CLI used to work with the Wolfi OSS project☆65Updated this week
- eBPF OOM Memory Profiler☆63Updated last week
- tool for building and running VMs for development and testing☆104Updated last week
- Run VM disk images using Podman / Docker / Kubernetes.☆229Updated 2 weeks ago
- agent for handling seccomp descriptors for container runtimes☆47Updated last year
- A layer 2 switch for VMs powered by eBPF☆43Updated 6 months ago
- go library for processing container images and simulating a squash filesystem☆97Updated last week
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆81Updated this week
- Security Observation Tool written in Rust inspired by Tetragon☆26Updated last week
- This repository contains various code snippets and learnings around eBPF☆84Updated last year
- COSI Runtime☆48Updated this week
- Checkpoint and Restore in Kubernetes☆147Updated last year
- This repo contains various examples to learn, explore, and experiment with eBPF.☆61Updated last month
- nginx image demo☆19Updated last year
- An eBPF Manager for Linux and Kubernetes☆671Updated this week
- Discover Linux kernel namespaces in Go. Almost everywhere. Aware of various OCI container engines, even engines in containers.☆47Updated 5 months ago
- Transparent Proxy Implementation using eBPF and Go☆75Updated 11 months ago