shamedgh/confine external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

shamedgh/confine

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/shamedgh/confine)

Close

shamedgh / confineView on GitHubMore

• External links
• Readme badge

This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than currently available tools.

☆70May 3, 2022Updated 3 years ago

Alternatives and similar repositories for confine

Users that are interested in confine are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• shamedgh / c2c

  View on GitHub
  This is the repository for the code and artifacts related to the CCS2022 paper: C2C: Fine-grained Configuration-driven System Call Filter…
  ☆11Nov 4, 2022Updated 3 years ago
• shamedgh / temporal-specialization

  View on GitHub
  This repository contains the source code related to the research paper titled "Temporal System Call Specialization for Attack Surface Red…
  ☆39Nov 14, 2024Updated last year
• sominsong / NIMOS

  View on GitHub
  Analysis of syscall sequence pattern from exploit codes for advanced system call sequence filtering for enhanced container security
  ☆16May 21, 2023Updated 2 years ago
• 2m4t / LiCShield

  View on GitHub
  ☆11Feb 22, 2016Updated 10 years ago
• isec-tugraz / Chestnut

  View on GitHub
  ☆25Jun 2, 2024Updated last year
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• hasanmdme / decap

  View on GitHub
  This tool set can generate required capabilities for binaries. A system call to capability mapping is used to assign capability to the bi…
  ☆14Oct 26, 2022Updated 3 years ago
• rssys / shard

  View on GitHub
  ☆13Oct 17, 2021Updated 4 years ago
• willfindlay / bpfcontain-rs

  View on GitHub
  BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.
  ☆59Jun 30, 2022Updated 3 years ago
• SFIP / SFIP

  View on GitHub
  ☆10Dec 3, 2021Updated 4 years ago
• rssys / kit

  View on GitHub
  Kernel isolation tester.
  ☆18Oct 20, 2022Updated 3 years ago
• containers / oci-seccomp-bpf-hook

  View on GitHub
  OCI hook to trace syscalls and generate a seccomp profile
  ☆337Mar 18, 2026Updated last week
• NodeHodor / Hodor

  View on GitHub
  Hodor for node.js
  ☆15Jun 18, 2023Updated 2 years ago
• jpope8 / container-escape-dataset

  View on GitHub
  Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.
  ☆15Jul 30, 2022Updated 3 years ago
• elastic / go-seccomp-bpf

  View on GitHub
  Go library for installing a seccomp BPF system call filter.
  ☆93Feb 10, 2026Updated last month
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• kubescape / kapprofiler

  View on GitHub
  Generate an application profile containing metrics/properties for Kubernetes workloads based on runtime behavior.
  ☆14Oct 1, 2024Updated last year
• sealuzh / msr18-docker-dataset

  View on GitHub
  Structured Information on State and Evolution of Dockerfiles - Online Appendix
  ☆10Mar 16, 2018Updated 8 years ago
• cali-library-isolation / Cali-library-isolation

  View on GitHub
  ☆16Sep 29, 2022Updated 3 years ago
• andrewstucki / bpf-lsm

  View on GitHub
  Example BPF program with LSM hooks
  ☆36Feb 24, 2021Updated 5 years ago
• eschulte / software-evolution

  View on GitHub
  evolution of extant software
  ☆24Jan 24, 2018Updated 8 years ago
• lepus-ctf / lepus-frontend

  View on GitHub
  Lepus-CTF frontend application
  ☆11Nov 2, 2015Updated 10 years ago
• FotisLouk / docker-sec

  View on GitHub
  Automatic AppArmor management for Docker containers
  ☆16Jul 22, 2023Updated 2 years ago
• pfnet / scheduler-plugins

  View on GitHub
  ☆22Dec 21, 2025Updated 3 months ago
• openstandia / keycloak-grpc

  View on GitHub
  Keycloak gRPC extension
  ☆12Mar 2, 2023Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• nhuhuan / sba

  View on GitHub
  Static Binary Analysis Platform
  ☆29Mar 8, 2026Updated 3 weeks ago
• giuseppe / easyseccomp

  View on GitHub
  DSL language to write seccomp filters
  ☆37Apr 5, 2024Updated last year
• mit-ll / HAKC

  View on GitHub
  ☆38Feb 15, 2022Updated 4 years ago
• w0lfzhang / kernel_exploit

  View on GitHub
  some kernel exploit challenges and cve analysis
  ☆26Nov 30, 2018Updated 7 years ago
• saBPF-project / sabpf-kernel

  View on GitHub
  ☆28Nov 24, 2021Updated 4 years ago
• XDU-SysSec / ExcessivePermissionAttack

  View on GitHub
  Take Over the Whole Cluster: Attacking Kubernetes via Excessive Permissions of Third-party Applications
  ☆19May 6, 2024Updated last year
• linux-lock / bpflock

  View on GitHub
  bpflock - eBPF driven security for locking and auditing Linux machines
  ☆151Feb 16, 2022Updated 4 years ago
• cxreet / razor

  View on GitHub
  ☆38Feb 6, 2021Updated 5 years ago
• acising / KellectAgent-Linux

  View on GitHub
  linux kernel event log collector by ebpf
  ☆35Mar 6, 2024Updated 2 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• lucyoa / embedded-tools

  View on GitHub
  ☆34May 19, 2019Updated 6 years ago
• ohchase / ptrace_syscalls

  View on GitHub
  Exploration project to invoke syscalls in arbitrary unix processes with ptrace.
  ☆21Jun 14, 2023Updated 2 years ago
• aws-samples / aws-streaming-generative-ai-application

  View on GitHub
  Streaming Generative AI Application on AWS
  ☆14Jun 24, 2024Updated last year
• bda-tool / bda

  View on GitHub
  BDA: Practical Dependence Analysis for Binary Executables by Unbiased Whole-program Path Sampling and Per-path Abstract Interpretation
  ☆31Feb 26, 2021Updated 5 years ago
• projectbtle / argXtract

  View on GitHub
  Tool to trace ARM Cortex-M assembly instructions and extract arguments to configuration APIs (supervisor calls or function calls).
  ☆31Jan 17, 2022Updated 4 years ago
• RiS3-Lab / kubo

  View on GitHub
  Use on-demand control- data- flow slicing combined with taint analysis and symbolic execution to produce scalable and precise UB detectio…
  ☆25Sep 5, 2021Updated 4 years ago
• innotommy / OAuthpaper-code

  View on GitHub
  ☆11May 16, 2024Updated last year