falcosecurity / kernel-testing
Ansible playbooks to provision firecracker VMs and run Falco kernel tests
☆10Updated 4 months ago
Related projects: ⓘ
- All-purpose test suite for Falco and its ecosystem☆12Updated 2 weeks ago
- Fetches the metadata from kubernetes API server and dispatches them to Falco instances☆14Updated 3 months ago
- A tool to crawl Linux kernel versions☆17Updated last month
- A crawler for kernel releases distributed by the major Linux distributions.☆12Updated last month
- Kit for building Falco drivers: kernel modules or eBPF probes☆64Updated last week
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆20Updated 2 years ago
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆98Updated 8 months ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆129Updated 2 years ago
- Evolution process of The Falco Project☆48Updated this week
- An eBPF program debugger☆193Updated 2 years ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆87Updated 3 weeks ago
- Administrative tooling for Falco☆88Updated this week
- Trace deep kernel events through eBPF and lsm hooks☆32Updated 3 years ago
- ptrace-based event producer for udig☆66Updated 2 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆113Updated last year
- Falco plugins SDK for Go☆24Updated 2 months ago
- ☆82Updated 2 months ago
- agent for handling seccomp descriptors for container runtimes☆41Updated 7 months ago
- Web-application used to validate Falco rules and test against scap file☆19Updated 4 months ago
- Runtime data collection for the StackRox Kubernetes Security Platform using eBPF☆52Updated this week
- ☆9Updated 2 years ago
- A process level network security monitoring and enforcement project for Kubernetes, using eBPF☆40Updated 4 years ago
- A file system events notifier based on eBPF☆54Updated last year
- Build custom Docker seccomp profiles for containers by finding syscalls it uses.☆89Updated 4 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆136Updated 2 years ago
- Discover Linux kernel namespaces in Go. Almost everywhere. Aware of various OCI container engines, even engines in containers.☆40Updated 2 months ago
- Ebpf faqs, samples, tooling☆43Updated 3 years ago
- ☆17Updated 3 years ago
- 🔍 Trace syscalls from user-space functions, by using eBPF☆78Updated last week
- ebpf compiler in Go; Write Go, get ebpf☆27Updated 3 weeks ago