thought-machine / falco-probes

Related projects: ⓘ

• checkpoint-restore / checkpointctl
  A tool for in-depth analysis of container checkpoints
  ☆95Updated last month
• nyrahul / ebpf-guide
  Ebpf faqs, samples, tooling
  ☆43Updated 3 years ago
• kinvolk / seccompagent
  agent for handling seccomp descriptors for container runtimes
  ☆41Updated 7 months ago
• Gui774ume / network-security-probe
  A process level network security monitoring and enforcement project for Kubernetes, using eBPF
  ☆40Updated 4 years ago
• falcosecurity / driverkit
  Kit for building Falco drivers: kernel modules or eBPF probes
  ☆64Updated last week
• accuknox / cilium-spire-tutorials
  Tutorials about Cilium and SPIRE integration
  ☆27Updated 2 years ago
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆64Updated this week
• willfindlay / bpfbox
  🐝 BPFBox 📦 Exploring process confinement in eBPF
  ☆98Updated 8 months ago
• rad-security / fingerprints
  A repository to store Rad Fingerprinting data.
  ☆23Updated last month
• cilium / cilium-perf-networking
  Utilities for Cilium networking performance evaluation
  ☆55Updated 3 years ago
• isovalent / kubenetbench
  ☆35Updated 3 years ago
• cilium / coverbee
  Code coverage tooling for eBPF
  ☆35Updated last month
• sysdiglabs / kube-apparmor-manager
  Manage AppAmormor profiles for Kubernetes cluster
  ☆37Updated 11 months ago
• falcosecurity / evolution
  Evolution process of The Falco Project
  ☆48Updated this week
• kinvolk / egress-filtering-benchmark
  ☆23Updated 3 years ago
• falcosecurity / pdig
  ptrace-based event producer for udig
  ☆66Updated 2 years ago
• 5GSEC / nimbus
  Intent driven security automation framework
  ☆23Updated this week
• confidential-containers / operator
  Operator to deploy confidential containers runtime
  ☆107Updated last week
• lizrice / thebook
  Links and resources for the O'Reilly Kubernetes Security book
  ☆39Updated 6 years ago
• falcosecurity / falcoctl
  Administrative tooling for Falco
  ☆88Updated this week
• falcosecurity-retire / cloud-native-security-hub
  Cloud Native Security Hub - Security Resources
  ☆55Updated 4 years ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated last year
• falcosecurity / plugins
  Falco plugins registry
  ☆82Updated this week
• accuknox / discovery-engine
  Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data e…
  ☆30Updated 11 months ago
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆27Updated 5 months ago
• blacktop / seccomp-gen
  Docker Secure Computing Profile Generator
  ☆47Updated 2 years ago
• mtardy / bpfmemapie
  A tool to render a pie chart of memory usage (bytes_memlock) of BPF maps on the system 🥧
  ☆18Updated 3 months ago
• anchore / k8s-inventory
  Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…
  ☆62Updated this week
• aquasecurity / bench-common
  Common code for hardening benchmarks
  ☆10Updated 7 months ago
• sigstore / policy-controller
  Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…
  ☆123Updated last week