grantseltzer / karn
Simplifying Seccomp enforcement in containerized or non-containerized apps
☆110Updated 4 years ago
Alternatives and similar repositories for karn:
Users that are interested in karn are comparing it to the libraries listed below
- A tool to list and diagnose bpf programs. (Who watches the watchers..? :)☆95Updated 4 years ago
- A package for handling ssh certificates☆45Updated 3 years ago
- Generate seccomp profiles from go binaries☆136Updated 6 years ago
- PAL: A secret bootstrapping tool for Docker☆84Updated 6 months ago
- Hallow is a SSH Certificate Authority designed for use with AWS native environments☆64Updated 8 months ago
- Hardening and Auditing Tool For Docker Hosts & Containers☆68Updated 9 years ago
- A dead simple secret store service for anyone using AWS☆37Updated 6 years ago
- Community rules for Commit Watcher☆24Updated 8 years ago
- Auto generated pdfs of apparmor .odt files direct from launchpad branch.☆29Updated 3 years ago
- CVE feed synchronization to issue management system☆58Updated 10 years ago
- Strace container output to a file, then shove the syscalls into elastic search.☆49Updated 8 years ago
- INACTIVE - http://mzl.la/ghe-archive - Linux Audit Plugin for heka written using netlink Protocol in golang and Lua☆75Updated 5 years ago
- A fast SSL/TLS reconnaisance tool written in Go☆59Updated 8 years ago
- An actuary is a business professional who analyzes the financial consequences of risk.☆78Updated 7 years ago
- Go seccomp parser and compiler☆53Updated 7 years ago
- verify https assets with a public transparency log☆75Updated 3 years ago
- Jump to Full Encryption☆61Updated 8 years ago
- efficient linux security monitoring☆26Updated 6 years ago
- Demonstrating that disabling ICC in docker does not block raw packets between containers.☆65Updated 7 years ago
- BeyondCorp-style federated access proxy☆48Updated last year
- DEPRECATED - Propagate users from Mozilla's Person API to third party systems.☆40Updated 2 years ago
- A Go implementation of the BERserk attack against Mozilla NSS ASN.1 parsing of PKCS#1 RSA signatures with e = 3. Complete of a certificat…☆95Updated 10 years ago
- drydock provides a flexible way of assessing the security of your Docker daemon configuration and containers using editable audit templat…☆65Updated 8 years ago
- Experimental CLI that takes a Docker image url and runs it in a Firecracker VM☆65Updated 6 years ago
- A tool for getting SSH keys out of LDAP☆48Updated 2 years ago
- Wrap any command in a status socket☆46Updated 2 years ago
- Command line tool to check the validity and expiration dates of SSL certificates.☆160Updated 4 years ago
- Certificate Transparency Log aggregation, parsing, and streaming service☆103Updated 7 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆118Updated last year
- Use Manifesto to store and query metadata for container images.☆163Updated 6 years ago