Alternatives and similar repositories for publications:

Users that are interested in publications are comparing it to the libraries listed below

• antitree / seccomp-diff
  ☆72Updated 3 months ago
• redcanaryco / ebpfmon
  ☆86Updated 9 months ago
• containerscrew / rootisnaked
  Simple root privilege escalation detection using eBPF 🐝
  ☆12Updated 2 months ago
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆28Updated 2 months ago
• google / ctrdac
  ☆11Updated 2 months ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆64Updated 7 months ago
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆74Updated last year
• ofirc / k8s-sniff-https
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆65Updated last week
• eurecom-s3 / lemon
  eBPF Memory Dump Tool
  ☆64Updated last month
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆47Updated 6 months ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆37Updated 2 years ago
• jp-gouin / multi-cluster-supply-chain
  ☆16Updated 9 months ago
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 7 months ago
• raesene / eathar
  ☆25Updated 11 months ago
• puerco / bomshell
  An query language and interactive tooling to work with SBOM data.
  ☆14Updated 6 months ago
• Zeerg / helix-honeypot
  K8s API Honeypot with Active Defense Capabilities
  ☆40Updated last year
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 3 years ago
• Vali-Cyber / ebpf-attacks
  A collection of bypasses and exploits for eBPF-based cloud security.
  ☆21Updated last year
• listendev / lstn
  A CLI tool to analyze the behavior of your dependencies using listen.dev
  ☆12Updated this week
• airbus-cert / dirtypipe-ebpf_detection
  An eBPF detection program for CVE-2022-0847
  ☆28Updated 2 years ago
• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆24Updated 7 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆82Updated 3 months ago
• kube-tarian / tarian
  Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…
  ☆54Updated 4 months ago
• ancat / egrets
  egrets monitors egress
  ☆45Updated 5 years ago
• chen-keinan / kube-knark
  Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster
  ☆36Updated 3 years ago
• sagarbhure / eBPFShield
  ☆63Updated 2 years ago
• raesene / teisteanas
  ☆20Updated 11 months ago
• kondukto-io / kntrl
  kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …
  ☆108Updated this week
• awslabs / k8s-network-policy-migrator
  K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…
  ☆30Updated last year
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆81Updated last year