Making containers more secure with eBPF and Linux Security Modules (LSM)
☆234Jun 2, 2024Updated 2 years ago
Alternatives and similar repositories for lockc
Users that are interested in lockc are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- agent for handling seccomp descriptors for container runtimes☆47Feb 1, 2024Updated 2 years ago
- A logging library for eBPF programs.☆25Jul 28, 2022Updated 3 years ago
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 4 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆137Feb 6, 2025Updated last year
- Layer 4 Kubernetes load-balancer☆460Sep 5, 2025Updated 9 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.☆16Oct 31, 2021Updated 4 years ago
- Example BPF program with LSM hooks☆36Feb 24, 2021Updated 5 years ago
- Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.☆4,643Updated this week
- A Rust library for managing eBPF programs.☆122Feb 26, 2024Updated 2 years ago
- BPF static linker☆286Updated this week
- A modular and blazing fast runtime security tool for the IoT, powered by eBPF.☆1,025Dec 9, 2025Updated 6 months ago
- Linux Kernel Runtime Integrity with eBPF☆186Nov 23, 2023Updated 2 years ago
- Minimal and opinionated eBPF tooling for the Rust ecosystem☆995Jun 22, 2026Updated last week
- An eBPF Manager for Linux and Kubernetes☆751Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- eBPF-based Security Observability and Runtime Enforcement☆4,776Updated this week
- Rust virtual machine and JIT compiler for eBPF programs☆1,117Jun 3, 2026Updated 3 weeks ago
- Get eBPF programs running from the cloud to the kernel in 1 line of bash☆1,300Apr 17, 2025Updated last year
- A cargo-generate template for Rust eBPF Projects using Aya☆138Jun 23, 2026Updated last week
- Operator to manage Cilium's etcd cluster☆26Sep 18, 2019Updated 6 years ago
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.☆93Sep 21, 2025Updated 9 months ago
- The Aya Book is an introductory book about using the Rust Programming Language and Aya library to build extended Berkley Packet Filter (e…☆140Jun 22, 2026Updated last week
- eBPF verifier based on abstract interpretation☆466Updated this week
- ☆115Apr 13, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Various eBPF programs for tracing network connections☆32Oct 26, 2021Updated 4 years ago
- Rust library for building and running BPF/eBPF modules☆1,722Jun 30, 2023Updated 3 years ago
- DSL language to write seccomp filters☆37May 3, 2026Updated last month
- libsinsp, libscap, the kernel module driver, and the eBPF driver sources☆311Updated this week
- ☆18Oct 9, 2023Updated 2 years ago
- A curated list of awesome eBPF 🐝 projects using aya-rs and Rust 🦀☆190Jun 17, 2025Updated last year
- ☆27Nov 24, 2021Updated 4 years ago
- Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (…☆2,436Updated this week
- A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29☆692Jul 7, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- RKE2 selinux + RPM packaging for selinux☆33Jun 19, 2026Updated last week
- eBPF based always-on CPU/GPU profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!☆732Updated this week
- Rust library for writing Linux security policies using eBPF☆314Jan 22, 2024Updated 2 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆124Jun 22, 2026Updated last week
- An opinionated BPF CO-RE library for Python3. Targets easy deployment on embedded systems with minimal dependency overhead.☆17Nov 8, 2020Updated 5 years ago
- Vault Exploit Defense☆128Sep 7, 2024Updated last year
- implementing gRPC GreeterServer in eBPF just for fun.☆80Oct 15, 2020Updated 5 years ago