containers / oci-seccomp-bpf-hookLinks
OCI hook to trace syscalls and generate a seccomp profile
☆329Updated 2 weeks ago
Alternatives and similar repositories for oci-seccomp-bpf-hook
Users that are interested in oci-seccomp-bpf-hook are comparing it to the libraries listed below
Sorting:
- A tool for in-depth analysis of container checkpoints☆120Updated 2 weeks ago
- agent for handling seccomp descriptors for container runtimes☆47Updated last year
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆132Updated 6 months ago
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆105Updated last year
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆230Updated last year
- Falco plugins registry☆102Updated this week
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆46Updated 5 months ago
- The Kubernetes Security Profiles Operator☆776Updated this week
- SELinux policy files for Container Runtimes☆278Updated last week
- Kit for building Falco drivers: kernel modules or eBPF probes☆66Updated last week
- Generate a variety of suspect actions that are detected by Falco rulesets☆106Updated 3 months ago
- ptrace-based event producer for udig☆67Updated 3 years ago
- A command line tool to automatically generate seccomp profiles.☆26Updated 4 years ago
- eBPF & Cilium Office Hours☆329Updated 2 months ago
- Find your favorite eBee☆73Updated 4 months ago
- sigstore the hard way!☆117Updated 3 weeks ago
- This repo contains various examples to learn, explore, and experiment with eBPF.☆61Updated last month
- ☆34Updated last year
- Operator to deploy confidential containers runtime☆147Updated this week
- Administrative tooling for Falco☆110Updated this week
- bpflock - eBPF driven security for locking and auditing Linux machines☆149Updated 3 years ago
- Response Engine for managing threats in your Kubernetes☆169Updated this week
- Artifact Ratification Framework (CNCF Sandbox)☆274Updated this week
- Linux Process Discovery. C Library, Go bindings, Runtime.☆222Updated 3 years ago
- The Falco Project Community☆57Updated 2 months ago
- Now moved into `github.com/inspektor-gadget/inspektor-gadget/pkg/gadget-collection/gadgets/traceloop`. Tracing system calls in cgroups u…☆198Updated 2 years ago
- A tool to render a pie chart of memory usage (bytes_memlock) of BPF maps on the system 🥧☆19Updated last year
- Runtime detection and response for malicious events in Kubernetes workloads☆46Updated last year
- libsinsp, libscap, the kernel module driver, and the eBPF driver sources☆284Updated this week
- Tools for understanding, measuring, and applying network policies effectively in kubernetes☆119Updated last year