Alternatives and similar repositories for publications

Users that are interested in publications are comparing it to the libraries listed below

• antitree / seccomp-diff
  ☆85Updated last month
• redcanaryco / ebpfmon
  ☆89Updated last week
• containerscrew / rootisnaked
  Simple root privilege escalation detection using eBPF 🐝
  ☆35Updated 2 months ago
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆75Updated 2 years ago
• TomasPhilippart / ebpfangel
  🐝 Ransomware Detection using Machine Learning with eBPF for Linux.
  ☆69Updated last year
• google / ctrdac
  ☆13Updated 10 months ago
• ofirc / k8s-sniff-https
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆73Updated 8 months ago
• Vali-Cyber / ebpf-attacks
  A collection of bypasses and exploits for eBPF-based cloud security.
  ☆25Updated last year
• raesene / teisteanas
  ☆28Updated 7 months ago
• sagarbhure / eBPFShield
  ☆63Updated 2 years ago
• kondukto-io / kntrl
  kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …
  ☆123Updated 2 months ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆66Updated last year
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆39Updated 2 years ago
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆88Updated last year
• eurecom-s3 / lemon
  eBPF Memory Dump Tool
  ☆93Updated 3 months ago
• accuknox / k8sthreatmodeling
  Threat Modeling (based on STRIDE approach) for Kubernetes systems.
  ☆25Updated last year
• antitree / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆37Updated last month
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆53Updated last year
• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆30Updated last year
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆112Updated 6 months ago
• Alevsk / dvka
  Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.
  ☆190Updated 2 months ago
• linux-lock / bpflock
  bpflock - eBPF driven security for locking and auditing Linux machines
  ☆150Updated 3 years ago
• kaansk / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆30Updated 9 months ago
• tarsal-oss / kflowd
  Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…
  ☆71Updated 8 months ago
• raesene / container-security-site
  ☆103Updated 3 weeks ago
• tstromberg / supplychain-attack-data
  Data about all known supply-chain attacks through history
  ☆62Updated 6 months ago
• hardenedvault / ved-ebpf
  VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
  ☆167Updated last year
• krisnova / xpid
  Linux Process Discovery. C Library, Go bindings, Runtime.
  ☆223Updated 3 years ago
• snyk / leaky-vessels-dynamic-detector
  Leaky Vessels Dynamic Detector
  ☆103Updated 8 months ago
• aquasecurity / traceeshark
  Deep Linux runtime visibility meets Wireshark
  ☆293Updated last month