microsoft / ipeLinks
IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE builds on concepts and implementations like loadpin, as well as leveraging existing modules like dm-verity to simplify enforcing integrity requirements on systems that require security constraints and\or complia…
☆64Updated last month
Alternatives and similar repositories for ipe
Users that are interested in ipe are comparing it to the libraries listed below
Sorting:
- Kernel Test Framework☆143Updated 4 months ago
- (Linux Kernel) Stack Monitoring Tool☆45Updated 3 years ago
- Disabling kernel lockdown on Ubuntu without physical access☆79Updated 2 years ago
- Static code analysis of refpolicy style SELinux policy☆44Updated 2 months ago
- Linux kernel - See Landlock issues☆40Updated last month
- LKRG bypass methods☆72Updated 5 years ago
- eBPF - extended Berkeley Packet Filter tooling☆123Updated 2 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆116Updated 2 years ago
- Kernel Address Isolation to have Side-channels Efficiently Removed☆221Updated 3 years ago
- Converged Security Suite for Intel & AMD platform security features☆61Updated 3 weeks ago
- BootHole vulnerability (CVE-2020-10713). detection script, links and other mitigation related materials☆67Updated 4 years ago
- A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermi…☆77Updated 4 years ago
- Example program using eBPF to log data being based in using shell pipes☆41Updated 4 years ago
- Routines for hunting down kernel symbols.☆82Updated 14 years ago
- Summary of the patch status for Meltdown / Spectre☆348Updated 7 years ago
- unofficial grsecurity gpl release☆22Updated 6 years ago
- GrSecurity and PaX Patches Before End of Public Release☆63Updated 6 years ago
- Detect patterns of bad behavior in function calls☆26Updated 4 years ago
- Conferences, tools, papers, etc.☆43Updated 3 weeks ago
- ☆70Updated 5 years ago
- ☆45Updated 2 years ago
- ☆90Updated last year
- ASLREKT is a proof of concept for an unfixed generic local ASLR bypass in Linux.☆25Updated 5 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆131Updated 7 months ago
- Files shared in all my home directories☆26Updated 2 months ago
- Linux Security Hardening for Confidential Compute☆66Updated 8 months ago
- grsecurity is the most advanced Linux kernel hardening patchset. This repository, not affiliated with the upstream project, aggregate mos…☆86Updated 8 years ago
- Fork of KVM with Virtual Machine Introspection patches☆36Updated last year
- Example BPF program with LSM hooks☆33Updated 4 years ago
- Linux Kernel Source Tree Reducer☆80Updated 7 months ago