OCI hook to trace syscalls and generate a seccomp profile
☆338Feb 12, 2026Updated 3 weeks ago
Alternatives and similar repositories for oci-seccomp-bpf-hook
Users that are interested in oci-seccomp-bpf-hook are comparing it to the libraries listed below
Sorting:
- The Kubernetes Security Profiles Operator☆836Updated this week
- A command line tool to automatically generate seccomp profiles.☆27Apr 29, 2021Updated 4 years ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆88Jan 28, 2024Updated 2 years ago
- This repository contains a tool for generating SELinux security profiles for containers☆568Dec 15, 2025Updated 2 months ago
- Container introspection tool. Find out what container runtime is being used as well as features available.☆1,073Dec 9, 2020Updated 5 years ago
- ptrace-based event producer for udig☆67Jul 20, 2022Updated 3 years ago
- Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using e…☆2,732Updated this week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆370Updated this week
- Kubernetes Security Training Platform - focusing on security mitigation☆978Sep 2, 2024Updated last year
- Kubernetes RBAC static analysis & visualisation tool☆739Feb 13, 2026Updated 2 weeks ago
- Generate seccomp profiles from go binaries☆135May 8, 2018Updated 7 years ago
- Linux Runtime Security and Forensics using eBPF☆4,406Updated this week
- Drifter☆17Jan 9, 2024Updated 2 years ago
- agent for handling seccomp descriptors for container runtimes☆47Feb 1, 2024Updated 2 years ago
- Kubernetes (k8s) admission controller webhook based on Casbin☆34Aug 8, 2023Updated 2 years ago
- Library to work with linux namespaces in go☆34Jan 9, 2024Updated 2 years ago
- Go library for installing a seccomp BPF system call filter.☆92Feb 10, 2026Updated 3 weeks ago
- ☆13Jan 30, 2025Updated last year
- eBPF-based Security Observability and Runtime Enforcement☆4,447Updated this week
- Help building an adaptive and fine-grained pod security policy☆329Oct 11, 2023Updated 2 years ago
- A daemon that manages SELinux policies on a filesystem☆41Dec 3, 2025Updated 3 months ago
- build distroless images with alpine tools☆130May 17, 2022Updated 3 years ago
- ☆11Dec 19, 2024Updated last year
- ☆29May 12, 2025Updated 9 months ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆125Dec 2, 2021Updated 4 years ago
- Superseded by https://github.com/aquasecurity/trivy-operator☆1,373Feb 3, 2026Updated last month
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…☆70May 3, 2022Updated 3 years ago
- Linux Process Discovery. C Library, Go bindings, Runtime.☆223Jul 20, 2022Updated 3 years ago
- ☆19Sep 16, 2024Updated last year
- ☆86Feb 4, 2026Updated last month
- ☆16Jul 17, 2024Updated last year
- AppArmor and Seccomp profiles for Docker images☆14Dec 9, 2025Updated 2 months ago
- A kubectl plugin to visualize network policies rules.☆99Feb 22, 2024Updated 2 years ago
- BadRobot - Operator Security Audit Tool☆225Feb 2, 2026Updated last month
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆106Jan 11, 2024Updated 2 years ago
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆164Feb 10, 2026Updated 3 weeks ago
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆449Feb 23, 2026Updated last week
- Go client and SDK for Falco☆55Jan 19, 2026Updated last month
- Decomposes Helm package and visualizes hierarchy of subcharts and images☆54Aug 16, 2023Updated 2 years ago