Alternatives and similar repositories for pidtree-bcc

Users that are interested in pidtree-bcc are comparing it to the libraries listed below

• falcosecurity / pdig
  ptrace-based event producer for udig
  ☆67Updated 3 years ago
• grantseltzer / karn
  Simplifying Seccomp enforcement in containerized or non-containerized apps
  ☆112Updated 4 years ago
• antitree / syscall2seccomp
  Build custom Docker seccomp profiles for containers by finding syscalls it uses.
  ☆90Updated 5 years ago
• eiginn / nftrace
  Easier tracing of packets through iptables
  ☆35Updated 2 months ago
• ShiftLeftSecurity / traceleft
  eBPF based syscalls, files and network events tracing framework
  ☆93Updated 5 years ago
• falcosecurity / driverkit
  Kit for building Falco drivers: kernel modules or eBPF probes
  ☆66Updated this week
• willfindlay / bpfbox
  🐝 BPFBox 📦 Exploring process confinement in eBPF
  ☆105Updated last year
• bookingcom / bpfink
  BPF based FIM solution
  ☆42Updated 2 years ago
• genuinetools / bpfps
  A tool to list and diagnose bpf programs. (Who watches the watchers..? :)
  ☆95Updated 4 years ago
• kinvolk / traceloop
  Now moved into `github.com/inspektor-gadget/inspektor-gadget/pkg/gadget-collection/gadgets/traceloop`. Tracing system calls in cgroups u…
  ☆198Updated 2 years ago
• redhat-nfvpe / kokotap
  Tools for kubernetes pod network tapping
  ☆42Updated 6 years ago
• mhausenblas / the-container-security-book
  The Container Security Book—a free book for practitioners
  ☆82Updated 5 years ago
• kinvolk / seccompagent
  agent for handling seccomp descriptors for container runtimes
  ☆47Updated last year
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆117Updated 2 years ago
• blacktop / seccomp-gen
  Docker Secure Computing Profile Generator
  ☆48Updated 3 years ago
• elastic / bpfcov
  Source-code based coverage for eBPF programs actually running in the Linux kernel
  ☆132Updated 6 months ago
• uchi-mata / dostainer
  ☆29Updated 7 months ago
• krisnova / falco-trace
  Falco Running with Ptrace(2) for Kernel Events
  ☆36Updated 4 years ago
• iovisor / iomodules
  IOModule manager and plugins
  ☆37Updated 8 years ago
• falcosecurity-retire / kubernetes-response-engine
  ☆37Updated 4 years ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• criticalstack / swoll
  an experimental suite of applications and APIs for monitoring kernel-level activity on a live Kubernetes cluster
  ☆69Updated 3 years ago
• aquasecurity / kube-query
  [EXPERIMENTAL] Extend osquery to report on Kubernetes
  ☆228Updated 4 years ago
• cloudflare / pal
  PAL: A secret bootstrapping tool for Docker
  ☆84Updated 11 months ago
• Netflix-Skunkworks / bpftoolkit
  ☆134Updated 2 months ago
• falcosecurity-retire / cloud-native-security-hub
  Cloud Native Security Hub - Security Resources
  ☆54Updated 5 years ago
• fntlnz / falco-inject
  Inject Falco and pdig into a running kubernetes pod
  ☆13Updated 5 years ago
• containers / oci-seccomp-bpf-hook
  OCI hook to trace syscalls and generate a seccomp profile
  ☆330Updated this week
• nabla-containers / runnc
  OCI-interfacing Container runtime for Nabla Containers
  ☆259Updated 3 years ago
• bloomberg / spire-tpm-plugin
  Provides agent and server plugins for SPIRE to allow TPM 2-based node attestation.
  ☆81Updated 2 years ago