Alternatives and similar repositories for linux

Users that are interested in linux are comparing it to the libraries listed below

• microsoft / ipe
  IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…
  ☆67Updated last month
• sandfs / sandfs.github.io
  Sandboxing File System
  ☆46Updated 6 years ago
• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆342Updated last month
• brainsmoke / ptrace-burrito
  a friendly wrapper around ptrace
  ☆134Updated 3 years ago
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆132Updated 3 years ago
• jameshilliard / linux-grsec
  unofficial grsecurity gpl release
  ☆24Updated 7 years ago
• bolinfest / opensnoop-native
  opensnoop in pure C using eBPF
  ☆102Updated 8 months ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆132Updated last year
• xairy / unlockdown
  Disabling kernel lockdown on Ubuntu without physical access
  ☆81Updated 3 years ago
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆118Updated 3 weeks ago
• pmem / vltrace
  Tool tracing syscalls in a fast way using eBPF linux kernel feature
  ☆100Updated 2 years ago
• KernelTestFramework / ktf
  Kernel Test Framework
  ☆149Updated last month
• cormander / tpe-lkm
  Trusted Path Execution (TPE) Linux Kernel Module
  ☆163Updated 6 years ago
• kees / kernel-tools
  Tools for doing upstream Linux kernel development, patch wrangling, builds, and testing
  ☆56Updated 3 weeks ago
• dburgener / cascade
  A high level language for SELinux policy
  ☆59Updated 5 months ago
• milabs / lkrg-bypass
  LKRG bypass methods
  ☆73Updated 5 years ago
• cyberus-technology / hedron
  The Hedron Microhypervisor
  ☆81Updated 2 years ago
• JonathonReinhart / nosecmem
  Demonstrate ability to read memfd_secret() data from the kernel
  ☆58Updated 2 years ago
• airbus-seclab / gustave
  GUSTAVE is a fuzzing platform for embedded OS kernels. It is based on QEMU and AFL (and all of its forkserver siblings). It allows to fuz…
  ☆202Updated 4 years ago
• trailofbits / anselm
  Detect patterns of bad behavior in function calls
  ☆25Updated 5 years ago
• jwilk / recidivm
  estimate peak virtual memory use
  ☆18Updated 9 months ago
• 9elements / converged-security-suite
  Converged Security Suite for Intel & AMD platform security features
  ☆68Updated 3 weeks ago
• skx / linux-security-modules
  A place to store my toy linux-security modules.
  ☆91Updated 4 years ago
• google / minijail
  sandboxing and containment tool used in ChromeOS and Android
  ☆352Updated 2 weeks ago
• cappsule / nofear
  Run any command transparently in a VM (this repo isn't part of Cappsule)
  ☆27Updated 8 years ago
• hbowden / nextgen
  A Genetic File, Syscall and Network Fuzzer.
  ☆58Updated 8 years ago
• srg-imperial / SaBRe
  Load-time selective binary rewriting
  ☆164Updated 3 years ago
• SELinuxProject / selint
  Static code analysis of refpolicy style SELinux policy
  ☆46Updated 9 months ago
• hrw / syscalls-table
  Information about Linux system calls on different architectures
  ☆171Updated 3 weeks ago
• cloudflare / sandbox
  Simple Linux seccomp rules without writing any code
  ☆514Updated 6 months ago