Making containers more secure with eBPF and Linux Security Modules (LSM)
☆233Jun 2, 2024Updated last year
Alternatives and similar repositories for lockc
Users that are interested in lockc are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- agent for handling seccomp descriptors for container runtimes☆47Feb 1, 2024Updated 2 years ago
- A logging library for eBPF programs.☆25Jul 28, 2022Updated 3 years ago
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆138Feb 6, 2025Updated last year
- Layer 4 Kubernetes load-balancer☆462Sep 5, 2025Updated 8 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.☆16Oct 31, 2021Updated 4 years ago
- Example BPF program with LSM hooks☆36Feb 24, 2021Updated 5 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Feb 17, 2022Updated 4 years ago
- Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.☆4,545Updated this week
- A Rust library for managing eBPF programs.☆122Feb 26, 2024Updated 2 years ago
- Simple BPF static linker☆281May 4, 2026Updated 2 weeks ago
- A modular and blazing fast runtime security tool for the IoT, powered by eBPF.☆1,018Dec 9, 2025Updated 5 months ago
- Minimal and opinionated eBPF tooling for the Rust ecosystem☆984May 13, 2026Updated last week
- An eBPF Manager for Linux and Kubernetes☆737Apr 27, 2026Updated 3 weeks ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- eBPF-based Security Observability and Runtime Enforcement☆4,676Updated this week
- Rust virtual machine and JIT compiler for eBPF programs☆1,108Feb 6, 2026Updated 3 months ago
- Get eBPF programs running from the cloud to the kernel in 1 line of bash☆1,301Apr 17, 2025Updated last year
- A cargo-generate template for Rust eBPF Projects using Aya☆138May 13, 2026Updated last week
- Operator to manage Cilium's etcd cluster☆26Sep 18, 2019Updated 6 years ago
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.☆93Sep 21, 2025Updated 8 months ago
- The Aya Book is an introductory book about using the Rust Programming Language and Aya library to build extended Berkley Packet Filter (e…☆137Updated this week
- eBPF verifier based on abstract interpretation☆461May 3, 2026Updated 2 weeks ago
- ☆115Apr 13, 2023Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Various eBPF programs for tracing network connections☆32Oct 26, 2021Updated 4 years ago
- Rust library for building and running BPF/eBPF modules☆1,722Jun 30, 2023Updated 2 years ago
- DSL language to write seccomp filters☆37May 3, 2026Updated 2 weeks ago
- Manager for single node Rancher clusters☆51Dec 13, 2021Updated 4 years ago
- libsinsp, libscap, the kernel module driver, and the eBPF driver sources☆305May 13, 2026Updated last week
- ☆17Oct 9, 2023Updated 2 years ago
- A curated list of awesome eBPF 🐝 projects using aya-rs and Rust 🦀☆189Jun 17, 2025Updated 11 months ago
- ☆27Nov 24, 2021Updated 4 years ago
- Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (…☆2,098Updated this week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆683Jul 7, 2024Updated last year
- eBPF based always-on CPU/GPU profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!☆723Updated this week
- RKE2 selinux + RPM packaging for selinux☆32Mar 28, 2026Updated last month
- Rust library for writing Linux security policies using eBPF☆314Jan 22, 2024Updated 2 years ago
- CO-RE code for the Netdata eBPF plugin.☆16May 11, 2026Updated last week
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆123Mar 30, 2026Updated last month
- Linux Kernel eBPF Collectors☆67May 11, 2026Updated last week