Alternatives and similar repositories for pidtree-bcc

Users that are interested in pidtree-bcc are comparing it to the libraries listed below

• grantseltzer / karn
  Simplifying Seccomp enforcement in containerized or non-containerized apps
  ☆112Updated 4 years ago
• falcosecurity / pdig
  ptrace-based event producer for udig
  ☆68Updated 3 years ago
• bookingcom / bpfink
  BPF based FIM solution
  ☆42Updated 2 years ago
• falcosecurity / driverkit
  Kit for building Falco drivers: kernel modules or eBPF probes
  ☆66Updated this week
• antitree / syscall2seccomp
  Build custom Docker seccomp profiles for containers by finding syscalls it uses.
  ☆90Updated 4 years ago
• willfindlay / bpfbox
  🐝 BPFBox 📦 Exploring process confinement in eBPF
  ☆105Updated last year
• genuinetools / bpfps
  A tool to list and diagnose bpf programs. (Who watches the watchers..? :)
  ☆95Updated 4 years ago
• mhausenblas / the-container-security-book
  The Container Security Book—a free book for practitioners
  ☆83Updated 5 years ago
• kinvolk / seccompagent
  agent for handling seccomp descriptors for container runtimes
  ☆47Updated last year
• ShiftLeftSecurity / traceleft
  eBPF based syscalls, files and network events tracing framework
  ☆93Updated 5 years ago
• uchi-mata / dostainer
  ☆29Updated 6 months ago
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆117Updated 2 years ago
• criticalstack / swoll
  an experimental suite of applications and APIs for monitoring kernel-level activity on a live Kubernetes cluster
  ☆69Updated 3 years ago
• elastic / bpfcov
  Source-code based coverage for eBPF programs actually running in the Linux kernel
  ☆132Updated 6 months ago
• eiginn / nftrace
  Easier tracing of packets through iptables
  ☆35Updated last month
• blacktop / seccomp-gen
  Docker Secure Computing Profile Generator
  ☆48Updated 3 years ago
• falcosecurity-retire / kubernetes-response-engine
  ☆37Updated 4 years ago
• kinvolk / traceloop
  Now moved into `github.com/inspektor-gadget/inspektor-gadget/pkg/gadget-collection/gadgets/traceloop`. Tracing system calls in cgroups u…
  ☆198Updated 2 years ago
• cloudflare / pal
  PAL: A secret bootstrapping tool for Docker
  ☆84Updated 10 months ago
• krisnova / falco-trace
  Falco Running with Ptrace(2) for Kernel Events
  ☆36Updated 4 years ago
• redhat-nfvpe / kokotap
  Tools for kubernetes pod network tapping
  ☆42Updated 6 years ago
• pyro / experiment-firecracker-run-docker
  Experimental CLI that takes a Docker image url and runs it in a Firecracker VM
  ☆65Updated 6 years ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• leodido / go-ebpf-examples
  ☆17Updated 5 years ago
• YutaroHayakawa / ipftrace
  [Deplicated] Now we have more sophisticated (and compact) implementation in ipftrace2 repository. Please check it as well.
  ☆58Updated 5 years ago
• aquasecurity / kube-query
  [EXPERIMENTAL] Extend osquery to report on Kubernetes
  ☆228Updated 4 years ago
• falcosecurity / falcoctl
  Administrative tooling for Falco
  ☆110Updated this week
• CrowdStrike / bpfmon-example
  proof-of-concept example of using eBPF to Monitor for eBPF Map tampering
  ☆22Updated 4 years ago
• falcosecurity-retire / profiles
  Falco container runtime security extras (default rulesets and more)
  ☆49Updated 6 years ago
• iovisor / iomodules
  IOModule manager and plugins
  ☆37Updated 8 years ago