landlock-lsm / linux
Linux kernel - See Landlock issues
☆35Updated last month
Related projects ⓘ
Alternatives and complementary repositories for linux
- estimate peak virtual memory use☆19Updated 9 months ago
- A high level language for SELinux policy☆56Updated 2 weeks ago
- a friendly wrapper around ptrace☆126Updated 2 years ago
- Detect patterns of bad behavior in function calls☆25Updated 4 years ago
- unofficial grsecurity gpl release☆22Updated 5 years ago
- Sandboxing File System☆46Updated 4 years ago
- A Genetic File, Syscall and Network Fuzzer.☆58Updated 7 years ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)☆20Updated last year
- IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…☆57Updated 3 weeks ago
- Routines for hunting down kernel symbols.☆81Updated 13 years ago
- Tool tracing syscalls in a fast way using eBPF linux kernel feature☆98Updated last year
- Linux kernel JIT spray for SMEP / KERNEXEC bypass☆55Updated 12 years ago
- Fork of KVM with Virtual Machine Introspection patches☆33Updated 11 months ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆113Updated last year
- GrSecurity and PaX Patches Before End of Public Release☆63Updated 6 years ago
- A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermi…☆75Updated 4 years ago
- LKRG bypass methods☆71Updated 4 years ago
- ☆70Updated 4 years ago
- TLS handshake utilities for in-kernel TLS consumers☆30Updated 3 weeks ago
- Docs and resources on CPU Speculative Execution bugs☆372Updated 6 years ago
- Generic eBPF runtime☆149Updated 3 years ago
- A bare-metal x86 instruction set fuzzer a la Sandsifter☆63Updated 8 months ago
- Demonstrate ability to read memfd_secret() data from the kernel☆57Updated 11 months ago
- kdevops history tree - use new git tree☆46Updated 7 months ago
- A forked and hardened version of PartitionAlloc from Chrome's Blink engine☆62Updated 6 years ago
- relros.c applies RELRO to static binaries, and static_to_dyn.c applies ASLR to static binaries.☆33Updated 6 years ago
- ☆27Updated 6 years ago
- eBPF - extended Berkeley Packet Filter tooling☆122Updated 2 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆124Updated last month
- Secure Virtual Architecture☆42Updated 5 years ago