kubearmor / kvm-service
Kubearmor Virtual Machine Service allows orchestrating policies to VMs and Bare-Metal environments using either k8s or non-k8s control plane.
☆11Updated 9 months ago
Related projects: ⓘ
- Intent driven security automation framework☆23Updated this week
- KubeArmor cli tool aka kArmor☆34Updated this week
- Shape your traffic the BPF way☆77Updated last year
- Ebpf faqs, samples, tooling☆43Updated 3 years ago
- AccuKnox IaC Scan GitHub Action☆14Updated last week
- k8tls (pronounced cattles), to assess server port security by detecting its TLS and certificates configuration.☆19Updated last month
- AccuKnox CI/CD Action for Container Security Scan☆14Updated 6 months ago
- Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data e…☆30Updated 11 months ago
- A crawler for kernel releases distributed by the major Linux distributions.☆12Updated last month
- ☆46Updated this week
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆20Updated 2 years ago
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆34Updated last month
- All-purpose test suite for Falco and its ecosystem☆12Updated 2 weeks ago
- KubeArmor runtime security integration with Open Horizon☆12Updated last year
- Discover Linux kernel namespaces in Go. Almost everywhere. Aware of various OCI container engines, even engines in containers.☆40Updated 2 months ago
- eBPF Steering Committee (BSC)☆11Updated 2 months ago
- ☆24Updated 4 months ago
- Repo to store Cilium CFP design docs☆28Updated 3 weeks ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆27Updated 5 months ago
- A tool for in-depth analysis of container checkpoints☆95Updated last month
- ebpf compiler in Go; Write Go, get ebpf☆27Updated 3 weeks ago
- Tutorials about Cilium and SPIRE integration☆27Updated 2 years ago
- Library to work with linux namespaces in go☆32Updated 8 months ago
- agent for handling seccomp descriptors for container runtimes☆41Updated 7 months ago
- tool for building and running VMs for development and testing☆58Updated last week
- Kit for building Falco drivers: kernel modules or eBPF probes☆64Updated last week
- bpflock - eBPF driven security for locking and auditing Linux machines☆136Updated 2 years ago
- Linux Kernel module providing TLS, identity and running WASM☆74Updated last month
- Generate a variety of suspect actions that are detected by Falco rulesets☆87Updated 3 weeks ago
- Pulls and unpacks a container image to the local filesystem. Usable both as a standalone CLI tool, and as a go module.☆25Updated 3 months ago