linux-lock/bpflock

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/linux-lock/bpflock)

linux-lock / bpflock

bpflock - eBPF driven security for locking and auditing Linux machines

☆154

Alternatives and similar repositories for bpflock

Users that are interested in bpflock are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

evdenis / lsm_bpf_check_argc0
View on GitHub
LSM BPF module to block pwnkit (CVE-2021-4034) like exploits
☆21Feb 17, 2022Updated 4 years ago
elastic / bpfcov
View on GitHub
Source-code based coverage for eBPF programs actually running in the Linux kernel
☆138Feb 6, 2025Updated last year
andrewstucki / bpf-lsm
View on GitHub
Example BPF program with LSM hooks
☆36Feb 24, 2021Updated 5 years ago
lockc-project / lockc
View on GitHub
Making containers more secure with eBPF and Linux Security Modules (LSM)
☆233Jun 2, 2024Updated 2 years ago
sinkap / linux-krsi
View on GitHub
Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)
☆24Jun 15, 2023Updated 2 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
mrtc0 / bouheki
View on GitHub
bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.
☆93Sep 21, 2025Updated 8 months ago
Gui774ume / krie
View on GitHub
Linux Kernel Runtime Integrity with eBPF
☆186Nov 23, 2023Updated 2 years ago
vbpf / prevail
View on GitHub
eBPF verifier based on abstract interpretation
☆463Jun 1, 2026Updated last week
willfindlay / bpfcontain-rs
View on GitHub
BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.
☆59Jun 30, 2022Updated 3 years ago
willfindlay / bpfbox
View on GitHub
🐝 BPFBox 📦 Exploring process confinement in eBPF
☆106Jan 11, 2024Updated 2 years ago
citronneur / blindssl
View on GitHub
Disable SSL certificate verification for all binaries that use libssl
☆48Jul 15, 2022Updated 3 years ago
Gui774ume / utrace
View on GitHub
UTrace is a tracing utility that leverages eBPF to trace both user space and kernel space functions
☆52Jan 18, 2022Updated 4 years ago
gojue / ehids-agent
View on GitHub
A Linux Host-based Intrusion Detection System based on eBPF.
☆456Dec 20, 2023Updated 2 years ago
congwang / ebpf-2-phase-signing
View on GitHub
☆15Jan 30, 2025Updated last year
Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
Gui774ume / fsprobe
View on GitHub
A file system events notifier based on eBPF
☆74Dec 5, 2025Updated 6 months ago
pathtofile / bpf-hookdetect
View on GitHub
Dectect syscall hooking using eBPF
☆170Apr 28, 2023Updated 3 years ago
cilium / tetragon
View on GitHub
eBPF-based Security Observability and Runtime Enforcement
☆4,716Jun 2, 2026Updated last week
Hamza-Megahed / odin
View on GitHub
Central IoC scanner based on Loki
☆20Nov 12, 2021Updated 4 years ago
chenyueqi / hotBPF
View on GitHub
☆15Apr 28, 2023Updated 3 years ago
varppi / awacs-scanner
View on GitHub
Another vulnerability scanner
☆18Aug 9, 2025Updated 10 months ago
redcanaryco / redcanary-ebpf-sensor
View on GitHub
Red Canary's eBPF Sensor
☆115Apr 15, 2026Updated last month
Gui774ume / ebpfkit
View on GitHub
ebpfkit is a rootkit powered by eBPF
☆845Feb 28, 2023Updated 3 years ago
hardenedvault / ved
View on GitHub
Vault Exploit Defense
☆128Sep 7, 2024Updated last year
Managed Kubernetes at scale on DigitalOcean • Ad
DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
pathtofile / bad-bpf
View on GitHub
A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
☆689Jul 7, 2024Updated last year
netdata / kernel-collector
View on GitHub
Linux Kernel eBPF Collectors
☆67May 11, 2026Updated 3 weeks ago
google / buzzer
View on GitHub
☆475Oct 27, 2025Updated 7 months ago
elastic / ebpf
View on GitHub
Elastic's eBPF
☆76Mar 12, 2026Updated 2 months ago
hardenedvault / ved-ebpf
View on GitHub
VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
☆171Sep 7, 2024Updated last year
netdata / ebpf-co-re
View on GitHub
CO-RE code for the Netdata eBPF plugin.
☆16May 19, 2026Updated 3 weeks ago
Gui774ume / ssh-probe
View on GitHub
monitor and protect SSH sessions with eBPF
☆74Jul 2, 2021Updated 4 years ago
YuanchengJiang / recipe-benchmark
View on GitHub
Source code of AsiaCCS'22 paper - RecIPE: Revisiting the Evaluation of Memory Error Defenses
☆14Sep 19, 2023Updated 2 years ago
pathtofile / bpf-pipesnoop
View on GitHub
Example program using eBPF to log data being based in using shell pipes
☆41Feb 15, 2021Updated 5 years ago
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
dthaler / ebpf-docs
View on GitHub
☆12Jul 8, 2023Updated 2 years ago
cilium / ci-kernels
View on GitHub
A collection of kernels used for CI builds
☆17Apr 15, 2026Updated last month
exein-io / pulsar
View on GitHub
A modular and blazing fast runtime security tool for the IoT, powered by eBPF.
☆1,024Dec 9, 2025Updated 6 months ago
redcanaryco / oxidebpf
View on GitHub
A Rust library for managing eBPF programs.
☆122Feb 26, 2024Updated 2 years ago
PKU-ASAL / NoDrop
View on GitHub
☆19May 31, 2026Updated last week
pathtofile / commandline_cloaking
View on GitHub
A collection of projects demonstrating various commandline cloaking techniques on Linux
☆61Aug 4, 2022Updated 3 years ago
anakryiko / btfdump
View on GitHub
BTF introspection tool
☆40Mar 30, 2026Updated 2 months ago