This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than currently available tools.
☆70May 3, 2022Updated 3 years ago
Alternatives and similar repositories for confine
Users that are interested in confine are comparing it to the libraries listed below
Sorting:
- This repository contains the source code related to the research paper titled "Temporal System Call Specialization for Attack Surface Red…☆38Nov 14, 2024Updated last year
- ☆11Feb 22, 2016Updated 10 years ago
- ☆25Jun 2, 2024Updated last year
- ☆13Oct 17, 2021Updated 4 years ago
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- Keycloak gRPC extension☆12Mar 2, 2023Updated 3 years ago
- Streaming Generative AI Application on AWS☆14Jun 24, 2024Updated last year
- ☆28Nov 16, 2021Updated 4 years ago
- Easy way how to add Quarkus extensions to your Keycloak deployment☆19Feb 4, 2026Updated last month
- Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.☆15Jul 30, 2022Updated 3 years ago
- OCI hook to trace syscalls and generate a seccomp profile☆338Feb 12, 2026Updated 3 weeks ago
- ☆11May 16, 2024Updated last year
- ☆13Apr 9, 2022Updated 3 years ago
- ☆10Dec 3, 2021Updated 4 years ago
- DSL language to write seccomp filters☆37Apr 5, 2024Updated last year
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.☆92Sep 21, 2025Updated 5 months ago
- Generate an application profile containing metrics/properties for Kubernetes workloads based on runtime behavior.☆14Oct 1, 2024Updated last year
- Asus AsIO2 Local Privilege Escalation exploit (based on ReWolf's MSI exploit)☆14Apr 5, 2020Updated 5 years ago
- Kernel isolation tester.☆18Oct 20, 2022Updated 3 years ago
- Example BPF program with LSM hooks☆36Feb 24, 2021Updated 5 years ago
- Automatic AppArmor management for Docker containers☆16Jul 22, 2023Updated 2 years ago
- ☆22Dec 21, 2025Updated 2 months ago
- ☆16Sep 29, 2022Updated 3 years ago
- Keycloak provider implementation to support SIOP-2 clients and the issuance of VerifiableCredentials through the Account-Console.☆22Apr 24, 2024Updated last year
- Exposing Keycloak metrics endpoints for Prometheus!☆15Feb 16, 2026Updated 3 weeks ago
- Custom Keycloak.X Server Distribution with selective features☆24Jan 30, 2023Updated 3 years ago
- Base image and Helm chart for serving Single Page Applications (SPAs)☆18Dec 19, 2025Updated 2 months ago
- Orbit: OS Support for Safe and Efficient Auxiliary Tasks in Applications☆22May 23, 2022Updated 3 years ago
- A memory scanner made in python for linux☆22Jun 6, 2021Updated 4 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 4 years ago
- An eBPF detection program for CVE-2022-0847☆29Jul 5, 2022Updated 3 years ago
- Use on-demand control- data- flow slicing combined with taint analysis and symbolic execution to produce scalable and precise UB detectio…☆25Sep 5, 2021Updated 4 years ago
- TIRO - A hybrid iterative deobfuscation framework for Android applications☆27Aug 17, 2018Updated 7 years ago
- Tool to trace ARM Cortex-M assembly instructions and extract arguments to configuration APIs (supervisor calls or function calls).☆31Jan 17, 2022Updated 4 years ago
- ClassicPlates Plus is an addon that adds additional features and new Classic-themed visuals to nameplates.☆10Oct 21, 2025Updated 4 months ago
- Kubernetes controller for automated Node operations☆31Apr 21, 2025Updated 10 months ago
- Keycloak's Site Reliability Engineers Special Interest Group (Keycloak SRE SIG): To improve the lives of people running and operating Key…☆31Feb 3, 2026Updated last month
- A command line tool to automatically generate seccomp profiles.☆27Apr 29, 2021Updated 4 years ago
- A Java library for the "Selective Disclosure for JWTs (SD-JWT)" specification.☆33Oct 31, 2025Updated 4 months ago