containerscrew / rootisnakedLinks
Simple root privilege escalation detection using eBPF π
β13Updated 6 months ago
Alternatives and similar repositories for rootisnaked
Users that are interested in rootisnaked are comparing it to the libraries listed below
Sorting:
- Publications from the eBPF foundationβ25Updated 8 months ago
- β81Updated last month
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetesβ71Updated 3 months ago
- β89Updated last year
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.β25Updated 9 months ago
- β12Updated 6 months ago
- A replacement for "kubectl exec" that works over WebSocket connections.β40Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.β107Updated 7 months ago
- β21Updated 2 weeks ago
- β21Updated 2 months ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.β74Updated last year
- Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG Appβ¦β67Updated 4 months ago
- AttachΓ© provides an emulation layer for Cloud Provider IMDS APIsβ58Updated last year
- Runtime Security Solution for your CI/CD Pipelineβ108Updated last month
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).β83Updated last year
- Demo repository for running eBPF in GitHub Actionsβ21Updated 4 months ago
- Linux Process Discovery. C Library, Go bindings, Runtime.β222Updated 3 years ago
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko geneβ¦β104Updated last year
- Generate a variety of suspect actions that are detected by Falco rulesetsβ106Updated 2 months ago
- Goby CLI eBPF Project Generatorβ32Updated 6 months ago
- Semgrep-based Policy Controller for Kubernetesβ47Updated 4 months ago
- Adversary emulation for EDR/SIEM testing (macOS/Linux)β49Updated 2 weeks ago
- K8s API Honeypot with Active Defense Capabilitiesβ42Updated last year
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and knβ¦β54Updated last year
- Kubernetes offensive framework built in eBPFβ37Updated 2 years ago
- β74Updated 2 months ago
- β42Updated 2 months ago
- Real-time eBPF-powered network security monitor with AI-driven threat detection. Surfaces port scans, DDoS attacks, botnet activity, and β¦β44Updated last month
- Validate the isolation posture of your container environment.β296Updated this week
- Falco plugins registryβ102Updated this week