Example BPF program with LSM hooks
☆36Feb 24, 2021Updated 5 years ago
Alternatives and similar repositories for bpf-lsm
Users that are interested in bpf-lsm are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Feb 17, 2022Updated 4 years ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)☆24Jun 15, 2023Updated 2 years ago
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.☆16Oct 31, 2021Updated 4 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 4 years ago
- Mimic is a eBPF virtual machine and emulator which runs in userspace☆29May 28, 2022Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Trace deep kernel events through eBPF and lsm hooks☆42Feb 9, 2021Updated 5 years ago
- Working examples of KRSI (via BCC scripts).☆15Dec 21, 2020Updated 5 years ago
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆234Jun 2, 2024Updated last year
- Benchmark tool for comparing with other runtimes.☆21Apr 22, 2025Updated 11 months ago
- Various eBPF programs for tracing network connections☆32Oct 26, 2021Updated 4 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆137Feb 6, 2025Updated last year
- 针对kubernetes中的RBAC可能被攻击检测工具。Detection tool for possible attacks on RBAC in kubernetes.☆25Jan 4, 2024Updated 2 years ago
- Red Canary's eBPF Sensor☆114Updated this week
- Linux Kernel Runtime Integrity with eBPF☆184Nov 23, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆18Nov 17, 2020Updated 5 years ago
- vArmor-ebpf is a specialized project dedicated to maintaining the BPF code utilized by vArmor.☆41Jan 26, 2026Updated 2 months ago
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- ☆25Jun 2, 2024Updated last year
- Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.☆13Mar 6, 2026Updated last month
- An eBPF detection program for CVE-2022-0847☆29Jul 5, 2022Updated 3 years ago
- [MICRO'20] LENS: A Low-level NVRAM Profiler [USENIX Security'23] NVLeak: Off-Chip Side-Channel Attacks via Non-Volatile Memory Systems☆14Jul 8, 2024Updated last year
- Vault Exploit Defense☆128Sep 7, 2024Updated last year
- ebpH (Extended BPF Process Homeostasis) monitors process behavior on your system to establish normal behavioral patterns. ebpH reports an…☆42Dec 8, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- CEF plugin for audisp (Linux Audit)☆23Aug 19, 2016Updated 9 years ago
- Memory protection and randomization tests (not limited to PaX enabled kernels)☆12Mar 5, 2024Updated 2 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆457Dec 20, 2023Updated 2 years ago
- A collection of BPF examples☆39Mar 30, 2021Updated 5 years ago
- File attribute changer library in go☆12Jan 26, 2024Updated 2 years ago
- FreeBSD src tree http://www.FreeBSD.org/☆13Apr 13, 2023Updated 3 years ago
- SOSCON19 session - "Faster Packet Processing in Linux: XDP" source code☆17Oct 17, 2019Updated 6 years ago
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…☆71May 3, 2022Updated 3 years ago
- BPF CI☆24Mar 11, 2026Updated last month
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- IOModule manager and plugins☆37Feb 24, 2017Updated 9 years ago
- A light introduction to BPF / eBPF☆11Nov 5, 2018Updated 7 years ago
- A tool based on eBPF, prometheus and grafana to monitor network connectivity.☆35Jun 22, 2022Updated 3 years ago
- Automating building nixos isos for VMs running on m1 Macs☆16Feb 1, 2023Updated 3 years ago
- ☆16Aug 11, 2016Updated 9 years ago
- A proof-of-concept Gen-Z subsystem for Linux written against the Gen-Z Fabric Emulation Environment.☆11May 8, 2019Updated 6 years ago
- UEFI OVMF symbol load script for GDB☆22Jul 20, 2022Updated 3 years ago