microsoft / ipeLinks
IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE builds on concepts and implementations like loadpin, as well as leveraging existing modules like dm-verity to simplify enforcing integrity requirements on systems that require security constraints and\or complia…
☆65Updated 3 months ago
Alternatives and similar repositories for ipe
Users that are interested in ipe are comparing it to the libraries listed below
Sorting:
- (Linux Kernel) Stack Monitoring Tool☆45Updated 3 years ago
- Summary of the patch status for Meltdown / Spectre☆350Updated 7 years ago
- Kernel Test Framework☆145Updated 6 months ago
- LKRG bypass methods☆72Updated 5 years ago
- Disabling kernel lockdown on Ubuntu without physical access☆79Updated 2 years ago
- Routines for hunting down kernel symbols.☆82Updated 14 years ago
- Linux kernel - See Landlock issues☆42Updated 3 months ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated 2 years ago
- ASLREKT is a proof of concept for an unfixed generic local ASLR bypass in Linux.☆25Updated 5 years ago
- A Tale of Two Worlds: Assessing the Vulnerability of Enclave Shielding Runtimes☆46Updated last year
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆131Updated 10 months ago
- Kernel Address Isolation to have Side-channels Efficiently Removed☆221Updated 3 years ago
- Linux Kernel Source Tree Reducer☆80Updated 9 months ago
- GrSecurity and PaX Patches Before End of Public Release☆64Updated 7 years ago
- Detect patterns of bad behavior in function calls☆26Updated 5 years ago
- Linux kernel JIT spray for SMEP / KERNEXEC bypass☆55Updated 12 years ago
- eBPF - extended Berkeley Packet Filter tooling☆124Updated 3 years ago
- Tear the firmware apart with your bare hands;-)☆192Updated 3 weeks ago
- unofficial grsecurity gpl release☆24Updated 6 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for ARM (Presented at BlackHat Asia 2018)☆73Updated 7 years ago
- Example program using eBPF to log data being based in using shell pipes☆41Updated 4 years ago
- Conferences, tools, papers, etc.☆43Updated 2 months ago
- a friendly wrapper around ptrace☆133Updated 3 years ago
- Docs and resources on CPU Speculative Execution bugs☆376Updated 7 years ago
- A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermi…☆78Updated 4 years ago
- Static code analysis of refpolicy style SELinux policy☆45Updated 5 months ago
- A project to run fuzzing jobs at scale with Kubernetes.☆148Updated 4 years ago
- iknowthis Linux SystemCall Fuzzer☆20Updated 6 years ago
- Security Project☆92Updated last week
- TRRespass☆125Updated 4 years ago