cncf / cncf-fuzzing
β¨π CNCF Fuzzers
β117Updated this week
Alternatives and similar repositories for cncf-fuzzing:
Users that are interested in cncf-fuzzing are comparing it to the libraries listed below
- Generate a variety of suspect actions that are detected by Falco rulesetsβ101Updated this week
- Static Analysis Library for Containersβ199Updated last year
- agent for handling seccomp descriptors for container runtimesβ44Updated last year
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.β123Updated this week
- Administrative tooling for Falcoβ91Updated this week
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable suppβ¦β127Updated this week
- Community curated list of System and Network policy templates for the KubeArmor and Ciliumβ42Updated 2 weeks ago
- Linux Kernel Runtime Integrity with eBPFβ173Updated last year
- Kit for building Falco drivers: kernel modules or eBPF probesβ65Updated this week
- β92Updated 2 weeks ago
- Evolution process of The Falco Projectβ50Updated this week
- bpflock - eBPF driven security for locking and auditing Linux machinesβ142Updated 3 years ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.β162Updated last year
- A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.β135Updated this week
- A replacement for "kubectl exec" that works over WebSocket connections.β36Updated 10 months ago
- Create Kubernetes AdmissionReview requests from Kubernetes resource manifestsβ113Updated last month
- OCI hook to trace syscalls and generate a seccomp profileβ309Updated 2 weeks ago
- Runtime security plug to protect user containersβ65Updated this week
- Making containers more secure with eBPF and Linux Security Modules (LSM)β224Updated 8 months ago
- Trivy's misconfiguration scanning engineβ218Updated 3 weeks ago
- Falco plugins registryβ87Updated this week
- Kubernetes Pod Security Standards implementation - https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/2579-psp-replacemβ¦β99Updated this week
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.β71Updated last year
- ptrace-based event producer for udigβ67Updated 2 years ago
- β25Updated 9 months ago
- book websiteβ67Updated 3 years ago
- A process level network security monitoring and enforcement project for Kubernetes, using eBPFβ42Updated 4 years ago
- Links and resources for the O'Reilly Kubernetes Security bookβ98Updated 4 years ago
- vArmor-ebpf is a specialized project dedicated to maintaining the BPF code utilized by vArmor.β27Updated this week
- Runtime detection and response for malicious events in Kubernetes workloadsβ41Updated 11 months ago