thought-machine / falco-probes
Automated build and mirror of eBPF kernel probes for use as a driver with the Falco runtime security agent (https://falco.org/)
☆16Updated 3 months ago
Alternatives and similar repositories for falco-probes:
Users that are interested in falco-probes are comparing it to the libraries listed below
- Kit for building Falco drivers: kernel modules or eBPF probes☆65Updated this week
- Kubernetes audit logging, when you don't control the control plane☆69Updated this week
- Common code for hardening benchmarks☆12Updated last year
- sigstore the hard way!☆110Updated 9 months ago
- ☆23Updated 4 years ago
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆101Updated last year
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- Code coverage tooling for eBPF☆36Updated 7 months ago
- A tool for in-depth analysis of container checkpoints☆108Updated 3 weeks ago
- agent for handling seccomp descriptors for container runtimes☆44Updated last year
- SysFlow edge processing pipeline☆15Updated last month
- Ebpf faqs, samples, tooling☆44Updated 3 years ago
- ptrace-based event producer for udig☆67Updated 2 years ago
- Manage AppAmormor profiles for Kubernetes cluster☆41Updated last year
- Intent driven security automation framework☆25Updated last week
- An query language and interactive tooling to work with SBOM data.☆14Updated 4 months ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆36Updated 11 months ago
- OCI hook to trace syscalls and generate a seccomp profile☆311Updated 3 weeks ago
- ☆35Updated 4 years ago
- ☆56Updated 2 years ago
- Runtime detection and response for malicious events in Kubernetes workloads☆41Updated 11 months ago
- eBPF Steering Committee (BSC)☆14Updated last month
- ☆20Updated 7 months ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆60Updated this week
- Find your favorite eBee☆60Updated last month
- Operator to deploy confidential containers runtime☆122Updated this week
- A file system events notifier based on eBPF☆61Updated 2 years ago
- Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data e…☆32Updated last year
- Securing Alice's, Bob's and Carl's software supply chain using in-toto☆90Updated last week
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆42Updated 3 weeks ago