willfindlay / bpfbox
π BPFBox π¦ Exploring process confinement in eBPF
β101Updated 10 months ago
Related projects β
Alternatives and complementary repositories for bpfbox
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.β56Updated 2 years ago
- Source-code based coverage for eBPF programs actually running in the Linux kernelβ128Updated 2 years ago
- A BPF-based syscall fault injectorβ94Updated last year
- An eBPF program debuggerβ197Updated 2 years ago
- eBPF based syscalls, files and network events tracing frameworkβ89Updated 4 years ago
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)β20Updated last year
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploitsβ20Updated 2 years ago
- bpflock - eBPF driven security for locking and auditing Linux machinesβ136Updated 2 years ago
- Trace deep kernel events through eBPF and lsm hooksβ34Updated 3 years ago
- Sample ebpf programs to analyzeβ91Updated last week
- Example BPF program with LSM hooksβ31Updated 3 years ago
- ## Auto-archived due to inactivity. ## profile eBPF programs from Goβ87Updated last year
- β18Updated 4 years ago
- A process level network security monitoring and enforcement project for Kubernetes, using eBPFβ40Updated 4 years ago
- The BTFhub Archive repository provides BTF files for those published kernels that lack native support for embedded BTF, thereby enhancingβ¦β95Updated this week
- Now moved into `github.com/inspektor-gadget/inspektor-gadget/pkg/gadget-collection/gadgets/traceloop`. Tracing system calls in cgroups uβ¦β198Updated last year
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.β113Updated last year
- eBPF - extended Berkeley Packet Filter toolingβ122Updated 2 years ago
- Examples of using BPF ring buffer APIsβ121Updated 4 years ago
- β77Updated this week
- agent for handling seccomp descriptors for container runtimesβ42Updated 9 months ago
- Tool tracing syscalls in a fast way using eBPF linux kernel featureβ98Updated last year
- A file system events notifier based on eBPFβ57Updated last year
- β43Updated 2 years ago
- Kit for building Falco drivers: kernel modules or eBPF probesβ64Updated 3 weeks ago
- Investigate kernel error call stacksβ209Updated last month
- OCI hook to trace syscalls and generate a seccomp profileβ303Updated last week
- eBPF verifier based on abstract interpretationβ391Updated this week
- eBPF Standard Documentationβ43Updated 2 months ago