SELinuxProject / selint

Related projects ⓘ

Alternatives and complementary repositories for selint

• microsoft / ipe
  IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…
  ☆57Updated 3 weeks ago
• lookfwd / getting-started-clusterfuzz-local-in-aws
  ☆15Updated 4 years ago
• redcanaryco / ebpfmon
  ☆84Updated 4 months ago
• in-toto / supply-chain-compromises
  ☆22Updated 2 years ago
• milabs / lkrg-bypass
  LKRG bypass methods
  ☆71Updated 4 years ago
• landlock-lsm / linux
  Linux kernel - See Landlock issues
  ☆35Updated last month
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆59Updated 3 weeks ago
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆113Updated last year
• struct / mapguard
  MapGuard is a library that enforces a security policy for mmap based page allocations.
  ☆21Updated 2 years ago
• ais2397 / sys2syz
  Automate generation of syzkaller's grammar
  ☆14Updated 2 years ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• anvilsecure / symlink-secure-boot-vm
  VM demonstration various symlink and hard link attacks against secure boot. See the whitepaper at: https://www.anvilventures.com/blog/def…
  ☆14Updated 4 years ago
• jameshilliard / linux-grsec
  unofficial grsecurity gpl release
  ☆22Updated 5 years ago
• pathtofile / bpf-pipesnoop
  Example program using eBPF to log data being based in using shell pipes
  ☆40Updated 3 years ago
• airbus-seclab / airbus-seclab.github.io
  Conferences, tools, papers, etc.
  ☆43Updated 2 months ago
• GJDuck / e9syscall
  A system call interception tool
  ☆53Updated last year
• redballoonsecurity / bal
  A framework for parsing binary data.
  ☆16Updated 2 years ago
• intel / fffc
  Easy-to-use tool which autogenerates a type-aware fuzzer from a debuggable executable.
  ☆22Updated last year
• usbarmory / armory-drive
  F-Secure Armory Drive - USB encrypted drive with mobile unlock over BLE
  ☆53Updated last month
• MozillaSecurity / virgo
  Crowdsourced fuzzing cluster. 🚀
  ☆21Updated 3 years ago
• ancat / egrets
  egrets monitors egress
  ☆45Updated 4 years ago
• dburgener / cascade
  A high level language for SELinux policy
  ☆56Updated this week
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆122Updated 2 years ago
• netspooky / notes
  ☆25Updated last year
• antitree / syscall2seccomp
  Build custom Docker seccomp profiles for containers by finding syscalls it uses.
  ☆89Updated 4 years ago
• jovanbulck / 0xbadc0de
  A Tale of Two Worlds: Assessing the Vulnerability of Enclave Shielding Runtimes
  ☆46Updated last year
• trailofbits / ebpf-common
  Various utilities useful for developers writing BPF tools
  ☆29Updated last year
• trailofbits / go-fuzz-utils
  ☆19Updated 2 months ago
• fabric8-analytics / cvejob
  A tool which tries to map CVEs from NVD to packages in supported ecosystems (Maven, NPM, PyPI).
  ☆12Updated last year