Alternatives and similar repositories for linux

Users that are interested in linux are comparing it to the libraries listed below

• sandfs / sandfs.github.io
  Sandboxing File System
  ☆46Updated 5 years ago
• microsoft / ipe
  IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…
  ☆65Updated 5 months ago
• bolinfest / opensnoop-native
  opensnoop in pure C using eBPF
  ☆102Updated 5 months ago
• jameshilliard / linux-grsec
  unofficial grsecurity gpl release
  ☆24Updated 6 years ago
• brainsmoke / ptrace-burrito
  a friendly wrapper around ptrace
  ☆133Updated 3 years ago
• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆334Updated 3 weeks ago
• xairy / unlockdown
  Disabling kernel lockdown on Ubuntu without physical access
  ☆81Updated 2 years ago
• jwilk / recidivm
  estimate peak virtual memory use
  ☆18Updated 6 months ago
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆117Updated 2 years ago
• stemjail / stemjail
  StemJail: Dynamic Role Compartmentalization
  ☆44Updated 9 years ago
• hannob / meltdownspectre-patches
  Summary of the patch status for Meltdown / Spectre
  ☆350Updated 7 years ago
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆125Updated 3 years ago
• cyberus-technology / hedron
  The Hedron Microhypervisor
  ☆82Updated 2 years ago
• hrw / syscalls-table
  Information about Linux system calls on different architectures
  ☆168Updated 2 weeks ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆132Updated last year
• trailofbits / anselm
  Detect patterns of bad behavior in function calls
  ☆25Updated 5 years ago
• srg-imperial / SaBRe
  Load-time selective binary rewriting
  ☆162Updated 3 years ago
• pmem / vltrace
  Tool tracing syscalls in a fast way using eBPF linux kernel feature
  ☆99Updated 2 years ago
• polaris64 / syswall
  Work in progress firewall for Linux syscalls, written in Rust
  ☆126Updated last year
• andrewstucki / bpf-lsm
  Example BPF program with LSM hooks
  ☆33Updated 4 years ago
• dburgener / cascade
  A high level language for SELinux policy
  ☆59Updated 2 months ago
• giuseppe / easyseccomp
  DSL language to write seccomp filters
  ☆37Updated last year
• lmrs2 / secretgrind
  Secretgrind: a Valgrind analysis tool to detect secrets in memory
  ☆61Updated 8 years ago
• enarx-archive / sev
  Library for AMD SEV
  ☆20Updated 3 years ago
• nccgroup / cachegrab
  a tool designed to help perform and visualize trace-driven cache attacks against software in the secure world of TrustZone-enabled ARMv8 …
  ☆80Updated 6 years ago
• phayes / sidefuzz
  Fuzzer to automatically find side-channel (timing) vulnerabilities
  ☆122Updated 4 years ago
• JonathonReinhart / nosecmem
  Demonstrate ability to read memfd_secret() data from the kernel
  ☆58Updated last year
• airbus-seclab / gustave
  GUSTAVE is a fuzzing platform for embedded OS kernels. It is based on QEMU and AFL (and all of its forkserver siblings). It allows to fuz…
  ☆200Updated 4 years ago
• trailofbits / krf
  A kernelspace syscall interceptor and randomized faulter
  ☆355Updated 11 months ago
• hbowden / nextgen
  A Genetic File, Syscall and Network Fuzzer.
  ☆58Updated 8 years ago