Making containers more secure with eBPF and Linux Security Modules (LSM)
☆232Jun 2, 2024Updated last year
Alternatives and similar repositories for lockc
Users that are interested in lockc are comparing it to the libraries listed below
Sorting:
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 4 years ago
- agent for handling seccomp descriptors for container runtimes☆47Feb 1, 2024Updated 2 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆137Feb 6, 2025Updated last year
- A logging library for eBPF programs.☆25Jul 28, 2022Updated 3 years ago
- A Rust library for managing eBPF programs.☆123Feb 26, 2024Updated 2 years ago
- Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.☆4,330Updated this week
- Example BPF program with LSM hooks☆36Feb 24, 2021Updated 5 years ago
- Layer 4 Kubernetes load-balancer☆460Sep 5, 2025Updated 5 months ago
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- Minimal and opinionated eBPF tooling for the Rust ecosystem☆959Updated this week
- A modular and blazing fast runtime security tool for the IoT, powered by eBPF.☆1,004Dec 9, 2025Updated 2 months ago
- Simple BPF static linker☆271Updated this week
- An eBPF Manager for Linux and Kubernetes☆715Feb 23, 2026Updated last week
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.☆16Oct 31, 2021Updated 4 years ago
- Linux Kernel Runtime Integrity with eBPF☆184Nov 23, 2023Updated 2 years ago
- eBPF-based Security Observability and Runtime Enforcement☆4,431Updated this week
- Rust virtual machine and JIT compiler for eBPF programs☆1,100Feb 6, 2026Updated 3 weeks ago
- A cargo-generate template for Rust eBPF Projects using Aya☆132Feb 1, 2026Updated last month
- The Aya Book is an introductory book about using the Rust Programming Language and Aya library to build extended Berkley Packet Filter (e…☆123Feb 22, 2026Updated last week
- Get eBPF programs running from the cloud to the kernel in 1 line of bash☆1,295Apr 17, 2025Updated 10 months ago
- eBPF verifier based on abstract interpretation☆453Feb 22, 2026Updated last week
- Rust library for building and running BPF/eBPF modules☆1,722Jun 30, 2023Updated 2 years ago
- ☆115Apr 13, 2023Updated 2 years ago
- DSL language to write seccomp filters☆37Apr 5, 2024Updated last year
- Linux Runtime Security and Forensics using eBPF☆4,388Feb 18, 2026Updated last week
- Rust bindings to libbpf from the Linux kernel☆266Feb 4, 2026Updated 3 weeks ago
- Rust library for writing Linux security policies using eBPF☆314Jan 22, 2024Updated 2 years ago
- eBPF based always-on CPU/GPU profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!☆706Updated this week
- Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (…☆2,055Feb 22, 2026Updated last week
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆683Jul 7, 2024Updated last year
- RKE2 selinux + RPM packaging for selinux☆30Updated this week
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.☆92Sep 21, 2025Updated 5 months ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆119Feb 13, 2026Updated 2 weeks ago
- BPF library for Async Rust, complementary for libbpf-rs.☆20Jan 30, 2024Updated 2 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆457Dec 20, 2023Updated 2 years ago
- A Tool to make Build and Run eBPF programs easier☆853Feb 17, 2026Updated last week
- user-friendly rust bindings for the bpf compiler collection☆482Oct 25, 2023Updated 2 years ago
- A curated list of awesome eBPF 🐝 projects using aya-rs and Rust 🦀☆172Jun 17, 2025Updated 8 months ago
- Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.☆1,662Oct 19, 2023Updated 2 years ago