Alternatives and similar repositories for publications

Users that are interested in publications are comparing it to the libraries listed below

• redcanaryco / ebpfmon
  ☆89Updated last year
• antitree / seccomp-diff
  ☆81Updated last month
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆74Updated last year
• containerscrew / rootisnaked
  Simple root privilege escalation detection using eBPF 🐝
  ☆13Updated 6 months ago
• google / ctrdac
  ☆12Updated 6 months ago
• ofirc / k8s-sniff-https
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆71Updated 3 months ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆65Updated 10 months ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆37Updated 2 years ago
• Vali-Cyber / ebpf-attacks
  A collection of bypasses and exploits for eBPF-based cloud security.
  ☆24Updated last year
• eurecom-s3 / lemon
  eBPF Memory Dump Tool
  ☆82Updated last month
• TomasPhilippart / ebpfangel
  🐝 Ransomware Detection using Machine Learning with eBPF for Linux.
  ☆67Updated 8 months ago
• kube-tarian / tarian
  Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…
  ☆56Updated 7 months ago
• sagarbhure / eBPFShield
  ☆65Updated 2 years ago
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆83Updated last year
• Zeerg / helix-honeypot
  K8s API Honeypot with Active Defense Capabilities
  ☆42Updated last year
• linux-lock / bpflock
  bpflock - eBPF driven security for locking and auditing Linux machines
  ☆149Updated 3 years ago
• google / container-explorer
  ☆90Updated 2 months ago
• ReversecLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆22Updated 11 months ago
• krisnova / xpid
  Linux Process Discovery. C Library, Go bindings, Runtime.
  ☆222Updated 3 years ago
• ancat / egrets
  egrets monitors egress
  ☆46Updated 5 years ago
• kondukto-io / kntrl
  kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …
  ☆116Updated 2 months ago
• accuknox / k8sthreatmodeling
  Threat Modeling (based on STRIDE approach) for Kubernetes systems.
  ☆25Updated 9 months ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆108Updated last month
• dorkamotorka / ebpf-github-actions
  Demo repository for running eBPF in GitHub Actions
  ☆19Updated 4 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆107Updated 7 months ago
• hardenedvault / ved-ebpf
  VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
  ☆164Updated 11 months ago
• anvilsecure / pqcscan
  Post-Quantum Cryptography Scanner - Scan SSH/TLS servers for PQC support
  ☆77Updated last week
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 3 years ago
• raesene / eathar
  ☆42Updated 2 months ago
• tarsal-oss / kflowd
  Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…
  ☆67Updated 3 months ago