Trace deep kernel events through eBPF and lsm hooks
☆42Feb 9, 2021Updated 5 years ago
Alternatives and similar repositories for lsmtrace
Users that are interested in lsmtrace are comparing it to the libraries listed below
Sorting:
- ☆10Apr 8, 2022Updated 3 years ago
- 基于eBPF实现高性能用户态文件系统功能☆14May 9, 2025Updated 9 months ago
- Example BPF program with LSM hooks☆36Feb 24, 2021Updated 5 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 4 years ago
- UTrace is a tracing utility that leverages eBPF to trace both user space and kernel space functions☆50Jan 18, 2022Updated 4 years ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)☆22Jun 15, 2023Updated 2 years ago
- A file system events notifier based on eBPF☆73Dec 5, 2025Updated 3 months ago
- Use Windows Management Instrumentation interfaces to perform actions on a Windows system from a Linux System☆16Mar 15, 2012Updated 13 years ago
- Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes☆12Sep 30, 2020Updated 5 years ago
- CO-RE code for the Netdata eBPF plugin.☆16Updated this week
- Learn something interesting by examples.☆79Nov 21, 2025Updated 3 months ago
- Rootkit spotter - experimental Linux rootkit finder LKM☆30Oct 11, 2020Updated 5 years ago
- This project tracks offsets of fields inside of Go structs across versions for achieveing automatic instrumentation using eBPF☆31Feb 4, 2023Updated 3 years ago
- Vault Exploit Defense☆127Sep 7, 2024Updated last year
- The BTFhub Archive repository provides BTF files for those published kernels that lack native support for embedded BTF, thereby enhancing…☆132Feb 20, 2026Updated last week
- Pet EDR Operation - A lightweight, open source EDR for Linux☆18Updated this week
- Userspace eBPF Runtime Benchmarking Test Suite and Results☆16Apr 21, 2024Updated last year
- 一个微型的操作系统☆12Nov 10, 2021Updated 4 years ago
- eBPF Steering Committee (BSC)☆14Dec 2, 2025Updated 3 months ago
- RPM DB bindings for go☆70May 19, 2025Updated 9 months ago
- Working examples of KRSI (via BCC scripts).☆15Dec 21, 2020Updated 5 years ago
- ☆13Jan 30, 2025Updated last year
- BTF introspection tool☆40Nov 26, 2025Updated 3 months ago
- Systems and Software Security☆16Nov 13, 2025Updated 3 months ago
- A collection of BPF examples☆39Mar 30, 2021Updated 4 years ago
- eBPF sockops samples for performance optimization☆69Feb 17, 2024Updated 2 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernel☆137Feb 6, 2025Updated last year
- eBPF verifier based on abstract interpretation☆455Updated this week
- ☆17Oct 24, 2016Updated 9 years ago
- ioring wrapper for windows-rs☆24Oct 2, 2022Updated 3 years ago
- Generate bpftrace eBPF programs online with GPT or LLM☆22Aug 7, 2024Updated last year
- CLI for actuated☆25Feb 4, 2026Updated last month
- ☆49Mar 19, 2022Updated 3 years ago
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.☆92Sep 21, 2025Updated 5 months ago
- inet-tool - the manager for BPF_PROG_TYPE_INET_LOOKUP eBPF programs☆25Aug 7, 2020Updated 5 years ago
- Disable SSL certificate verification for all binaries that use libssl☆48Jul 15, 2022Updated 3 years ago
- Adaptive Callsite-sensitive Control Flow Integrity - EuroS&P'19☆22Dec 12, 2022Updated 3 years ago
- ebpfkit is a rootkit powered by eBPF☆838Feb 28, 2023Updated 3 years ago
- ## Auto-archived due to inactivity. ## profile eBPF programs from Go☆88Jul 31, 2023Updated 2 years ago