Example BPF program with LSM hooks
☆36Feb 24, 2021Updated 5 years ago
Alternatives and similar repositories for bpf-lsm
Users that are interested in bpf-lsm are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆27Nov 24, 2021Updated 4 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Feb 17, 2022Updated 4 years ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)☆24Jun 15, 2023Updated 3 years ago
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.☆16Oct 31, 2021Updated 4 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆153Feb 16, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Mimic is a eBPF virtual machine and emulator which runs in userspace☆29May 28, 2022Updated 4 years ago
- Trace deep kernel events through eBPF and lsm hooks☆44Feb 9, 2021Updated 5 years ago
- Working examples of KRSI (via BCC scripts).☆15Dec 21, 2020Updated 5 years ago
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆234Jun 2, 2024Updated 2 years ago
- Various eBPF programs for tracing network connections☆32Oct 26, 2021Updated 4 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆137Feb 6, 2025Updated last year
- ☆18Oct 9, 2023Updated 2 years ago
- Red Canary's eBPF Sensor☆115Apr 15, 2026Updated 2 months ago
- Linux Kernel Runtime Integrity with eBPF☆186Nov 23, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆18Nov 17, 2020Updated 5 years ago
- vArmor-ebpf is a specialized project dedicated to maintaining the BPF code utilized by vArmor.☆43Jun 1, 2026Updated 2 weeks ago
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- ☆25Jun 2, 2024Updated 2 years ago
- convert secret patterns to gf compatible.☆38Feb 11, 2023Updated 3 years ago
- A simple example of map_in_map usage in libbpf☆10Mar 18, 2020Updated 6 years ago
- Automatic fuzz targets generation for Golang packages☆55Jun 4, 2026Updated 2 weeks ago
- An eBPF detection program for CVE-2022-0847☆29Jul 5, 2022Updated 3 years ago
- [MICRO'20] LENS: A Low-level NVRAM Profiler [USENIX Security'23] NVLeak: Off-Chip Side-Channel Attacks via Non-Volatile Memory Systems☆14Jul 8, 2024Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Vault Exploit Defense☆128Sep 7, 2024Updated last year
- Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.☆13Mar 6, 2026Updated 3 months ago
- Control-Flow Integrity implementation for the Linux Kernel 3.19☆20Feb 19, 2020Updated 6 years ago
- ebpH (Extended BPF Process Homeostasis) monitors process behavior on your system to establish normal behavioral patterns. ebpH reports an…☆43Dec 8, 2022Updated 3 years ago
- SysFlow edge processing pipeline☆18Jan 15, 2025Updated last year
- Memory protection and randomization tests (not limited to PaX enabled kernels)☆12Mar 5, 2024Updated 2 years ago
- a docker container behavior monitoring tool based on eBPF☆17Jul 22, 2023Updated 2 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆456Dec 20, 2023Updated 2 years ago
- A collection of BPF examples☆39Mar 30, 2021Updated 5 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- File attribute changer library in go☆13Jan 26, 2024Updated 2 years ago
- SOSCON19 session - "Faster Packet Processing in Linux: XDP" source code☆17Oct 17, 2019Updated 6 years ago
- tool for building and running VMs for development and testing☆123Updated this week
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…☆71May 3, 2022Updated 4 years ago
- BPF CI☆24Jun 10, 2026Updated last week
- Qiling Framework Documentation☆18Mar 9, 2025Updated last year
- IOModule manager and plugins☆37Feb 24, 2017Updated 9 years ago