containers / oci-seccomp-bpf-hookLinks
OCI hook to trace syscalls and generate a seccomp profile
☆328Updated 3 weeks ago
Alternatives and similar repositories for oci-seccomp-bpf-hook
Users that are interested in oci-seccomp-bpf-hook are comparing it to the libraries listed below
Sorting:
- A tool for in-depth analysis of container checkpoints☆118Updated this week
- agent for handling seccomp descriptors for container runtimes☆47Updated last year
- The Kubernetes Security Profiles Operator☆770Updated this week
- Making containers more secure with eBPF and Linux Security Modules (LSM)☆230Updated last year
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆46Updated 4 months ago
- Falco plugins registry☆102Updated this week
- SELinux policy files for Container Runtimes☆276Updated last week
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆104Updated last year
- ☆34Updated last year
- Kit for building Falco drivers: kernel modules or eBPF probes☆66Updated this week
- ptrace-based event producer for udig☆68Updated 3 years ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆106Updated 2 months ago
- eBPF & Cilium Office Hours☆329Updated 2 months ago
- Administrative tooling for Falco☆110Updated last week
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆132Updated 6 months ago
- sigstore the hard way!☆115Updated last year
- A command line tool to automatically generate seccomp profiles.☆26Updated 4 years ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆40Updated last year
- libsinsp, libscap, the kernel module driver, and the eBPF driver sources☆281Updated this week
- Now moved into `github.com/inspektor-gadget/inspektor-gadget/pkg/gadget-collection/gadgets/traceloop`. Tracing system calls in cgroups u…☆198Updated 2 years ago
- Response Engine for managing threats in your Kubernetes☆168Updated this week
- Find your favorite eBee☆71Updated 4 months ago
- This repo contains various examples to learn, explore, and experiment with eBPF.☆61Updated last month
- bpflock - eBPF driven security for locking and auditing Linux machines☆149Updated 3 years ago
- Operator to deploy confidential containers runtime☆144Updated this week
- The Falco Project Community☆57Updated last month
- Artifact Ratification Framework (CNCF Sandbox)☆270Updated this week
- A tool to render a pie chart of memory usage (bytes_memlock) of BPF maps on the system 🥧☆19Updated last year
- Linux Process Discovery. C Library, Go bindings, Runtime.☆222Updated 3 years ago
- Prometheus Metrics Exporter for Falco output events☆122Updated 3 months ago