microsoft / ipe
IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE builds on concepts and implementations like loadpin, as well as leveraging existing modules like dm-verity to simplify enforcing integrity requirements on systems that require security constraints and\or complia…
☆60Updated 3 weeks ago
Alternatives and similar repositories for ipe:
Users that are interested in ipe are comparing it to the libraries listed below
- Linux kernel - See Landlock issues☆36Updated 2 months ago
- A feature-complete reference implementation of a modern Xen VMI debugger. ARCHIVED: Development continues at https://github.com/spencermi…☆77Updated 4 years ago
- Static code analysis of refpolicy style SELinux policy☆42Updated 2 weeks ago
- LKRG bypass methods☆70Updated 5 years ago
- ☆90Updated 10 months ago
- Control-Flow Integrity implementation for the Linux Kernel 3.19☆20Updated 5 years ago
- Fork of KVM with Virtual Machine Introspection patches☆34Updated last year
- ☆32Updated 5 years ago
- Disabling kernel lockdown on Ubuntu without physical access☆78Updated 2 years ago
- Routines for hunting down kernel symbols.☆82Updated 13 years ago
- Example program using eBPF to log data being based in using shell pipes☆41Updated 4 years ago
- Converged Security Suite for Intel & AMD platform security features☆60Updated last week
- Kernel Test Framework☆140Updated 3 weeks ago
- Kernel Address Isolation to have Side-channels Efficiently Removed☆215Updated 3 years ago
- Linux Kernel Source Tree Reducer☆80Updated 3 months ago
- (Linux Kernel) Stack Monitoring Tool☆43Updated 3 years ago
- a friendly wrapper around ptrace☆132Updated 2 years ago
- ☆70Updated 4 years ago
- Linux Security Hardening for Confidential Compute☆66Updated 4 months ago
- ASLREKT is a proof of concept for an unfixed generic local ASLR bypass in Linux.☆25Updated 5 years ago
- Heap analysis tooling for dlmalloc☆27Updated 2 years ago
- Summary of the patch status for Meltdown / Spectre☆347Updated 7 years ago
- Detect patterns of bad behavior in function calls☆25Updated 4 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆117Updated last year
- Linux kernel source tree (Kernel Self Protection Project)☆85Updated 3 weeks ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆127Updated 4 months ago
- GrSecurity and PaX Patches Before End of Public Release☆63Updated 6 years ago
- Linux kernel JIT spray for SMEP / KERNEXEC bypass☆55Updated 12 years ago
- A Tale of Two Worlds: Assessing the Vulnerability of Enclave Shielding Runtimes☆45Updated last year
- Dynamic instrumentation of the Linux kernel☆41Updated 9 years ago