Example BPF program with LSM hooks
☆36Feb 24, 2021Updated 5 years ago
Alternatives and similar repositories for bpf-lsm
Users that are interested in bpf-lsm are comparing it to the libraries listed below
Sorting:
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 4 years ago
- Trace deep kernel events through eBPF and lsm hooks☆42Feb 9, 2021Updated 5 years ago
- ebpH (Extended BPF Process Homeostasis) monitors process behavior on your system to establish normal behavioral patterns. ebpH reports an…☆42Dec 8, 2022Updated 3 years ago
- Mimic is a eBPF virtual machine and emulator which runs in userspace☆29May 28, 2022Updated 3 years ago
- A simple example of map_in_map usage in libbpf☆10Mar 18, 2020Updated 5 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆137Feb 6, 2025Updated last year
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆231Jun 2, 2024Updated last year
- Subgraph Citadel image builder☆17Apr 2, 2019Updated 6 years ago
- ☆17Oct 9, 2023Updated 2 years ago
- [MICRO'20] LENS: A Low-level NVRAM Profiler [USENIX Security'23] NVLeak: Off-Chip Side-Channel Attacks via Non-Volatile Memory Systems☆14Jul 8, 2024Updated last year
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- SysFlow edge processing pipeline☆18Jan 15, 2025Updated last year
- SOSCON19 session - "Faster Packet Processing in Linux: XDP" source code☆17Oct 17, 2019Updated 6 years ago
- ☆25Jun 2, 2024Updated last year
- Linux Kernel Runtime Integrity with eBPF☆184Nov 23, 2023Updated 2 years ago
- ☆18Nov 17, 2020Updated 5 years ago
- Control-Flow Integrity implementation for the Linux Kernel 3.19☆22Feb 19, 2020Updated 6 years ago
- An eBPF detection program for CVE-2022-0847☆29Jul 5, 2022Updated 3 years ago
- Additional kernel tracing features merged with recent Linux kernel releases. DTrace makes use of these additional features.☆32Sep 4, 2024Updated last year
- A tool based on eBPF, prometheus and grafana to monitor network connectivity.☆35Jun 22, 2022Updated 3 years ago
- Harness for the Linux kernel eBPF verifier☆34Sep 1, 2022Updated 3 years ago
- eBPF Library for Go☆29Jan 8, 2026Updated 2 months ago
- A general cross-architecture C/C++ hotpatch solution using customized userspace eBPF runtime. One patch release can fix the same vulnera…☆30Nov 4, 2023Updated 2 years ago
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…☆70May 3, 2022Updated 3 years ago
- eBPF verifier based on abstract interpretation☆455Feb 28, 2026Updated last week
- tool for building and running VMs for development and testing☆115Updated this week
- Linux kernel: eBPF support for user-defined TCP options☆30May 26, 2020Updated 5 years ago
- A tracing tool to analyze the I/O behavior of a program.☆12Sep 25, 2019Updated 6 years ago
- Examples of using BPF ring buffer APIs☆137Oct 26, 2020Updated 5 years ago
- An ebpf based agent for monitoring security relevant events on Linux systems.☆34Nov 3, 2023Updated 2 years ago
- an ebpf based program which focus on process's network bandwidth, like Nethogs but provides every connection's bandwidth as well, and eve…☆36Nov 16, 2022Updated 3 years ago
- BPF based FIM solution☆42May 22, 2023Updated 2 years ago
- An IDA processor for eBPF bytecode☆34May 17, 2017Updated 8 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆457Dec 20, 2023Updated 2 years ago
- A process level network security monitoring and enforcement project for Kubernetes, using eBPF☆44Jun 16, 2020Updated 5 years ago
- Memory protection and randomization tests (not limited to PaX enabled kernels)☆12Mar 5, 2024Updated 2 years ago
- Python Telegraph api.☆15Mar 22, 2025Updated 11 months ago
- GatsbyJS source plugin for Velog☆11Nov 5, 2022Updated 3 years ago
- ☆41Jan 15, 2021Updated 5 years ago