landlock-lsm / linux
Linux kernel - See Landlock issues
☆40Updated last week
Alternatives and similar repositories for linux:
Users that are interested in linux are comparing it to the libraries listed below
- Sandboxing File System☆46Updated 5 years ago
- A high level language for SELinux policy☆59Updated 2 months ago
- opensnoop in pure C using eBPF☆100Updated 2 weeks ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆116Updated 2 years ago
- A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermi…☆77Updated 4 years ago
- Tool tracing syscalls in a fast way using eBPF linux kernel feature☆98Updated 2 years ago
- IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…☆62Updated last week
- a friendly wrapper around ptrace☆131Updated 3 years ago
- fuzzing framework based on libfuzzer and clang sanitizer☆166Updated 6 years ago
- Library for AMD SEV☆20Updated 3 years ago
- Load-time selective binary rewriting☆158Updated 2 years ago
- estimate peak virtual memory use☆18Updated last month
- Disabling kernel lockdown on Ubuntu without physical access☆79Updated 2 years ago
- Rewriting functions in compiled binaries using McSema☆88Updated 5 years ago
- eBPF - extended Berkeley Packet Filter tooling☆123Updated 2 years ago
- A language and library for specifying syscall filtering policies.☆316Updated 9 months ago
- Generic eBPF runtime☆151Updated 3 years ago
- Fork of KVM with Virtual Machine Introspection patches☆37Updated last year
- Demonstrate ability to read memfd_secret() data from the kernel☆58Updated last year
- Linux kernel JIT spray for SMEP / KERNEXEC bypass☆55Updated 12 years ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)☆20Updated last year
- Run any command transparently in a VM (this repo isn't part of Cappsule)☆27Updated 8 years ago
- A dynamic library bundling the guest payload consumed by libkrun☆86Updated last month
- Unsupervised coverage-guided btrfs fuzzer☆14Updated 4 years ago
- unofficial grsecurity gpl release☆22Updated 6 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆130Updated 6 months ago
- The Hedron Microhypervisor☆78Updated last year
- Provides a way to monitor cryptographic operations performed on a system☆14Updated 6 months ago
- Secure Virtual Architecture☆42Updated 6 years ago
- ☆70Updated 5 years ago