BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.
☆59Jun 30, 2022Updated 4 years ago
Alternatives and similar repositories for bpfcontain-rs
Users that are interested in bpfcontain-rs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆105Jan 11, 2024Updated 2 years ago
- Various eBPF programs for tracing network connections☆32Oct 26, 2021Updated 4 years ago
- ☆11Feb 22, 2016Updated 10 years ago
- ☆27Nov 24, 2021Updated 4 years ago
- This is the repository for the code and artifacts related to the CCS2022 paper: C2C: Fine-grained Configuration-driven System Call Filter…☆11Nov 4, 2022Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆17Mar 22, 2019Updated 7 years ago
- ebpH (Extended BPF Process Homeostasis) monitors process behavior on your system to establish normal behavioral patterns. ebpH reports an…☆43Dec 8, 2022Updated 3 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆155Feb 16, 2022Updated 4 years ago
- ☆25Dec 14, 2023Updated 2 years ago
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than…☆71May 3, 2022Updated 4 years ago
- Working examples of KRSI (via BCC scripts).☆15Dec 21, 2020Updated 5 years ago
- A process level network security monitoring and enforcement project for Kubernetes, using eBPF☆44Jun 16, 2020Updated 6 years ago
- SysFlow edge processing pipeline☆18Jan 15, 2025Updated last year
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)☆24Jun 15, 2023Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Linux Kernel Runtime Integrity with eBPF☆186Nov 23, 2023Updated 2 years ago
- A command line tool to automatically generate seccomp profiles.☆27Apr 29, 2021Updated 5 years ago
- Example BPF program with LSM hooks☆36Feb 24, 2021Updated 5 years ago
- eBPF Steering Committee (BSC)☆14Jun 11, 2026Updated 3 weeks ago
- CO-RE code for the Netdata eBPF plugin.☆16Jun 22, 2026Updated 2 weeks ago
- This project process eBPF events into Prometheus metrics via a Go user-space application. A Grafana dashboard is included to visualize Ke…☆16Apr 22, 2025Updated last year
- Trace deep kernel events through eBPF and lsm hooks☆44Feb 9, 2021Updated 5 years ago
- This tool set can generate required capabilities for binaries. A system call to capability mapping is used to assign capability to the bi…☆14Oct 26, 2022Updated 3 years ago
- Analysis of syscall sequence pattern from exploit codes for advanced system call sequence filtering for enhanced container security☆16May 21, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- eBPF学习☆19Jun 21, 2022Updated 4 years ago
- ☆11Aug 28, 2024Updated last year
- 实现一个基于eBPF技术监控容器行为的工具☆16May 9, 2025Updated last year
- OCI hook to trace syscalls and generate a seccomp profile☆348Jun 18, 2026Updated 2 weeks ago
- Diagrams to visually learn Falco and its eBPF probe☆15Jun 24, 2021Updated 5 years ago
- Build custom Docker seccomp profiles for containers by finding syscalls it uses.☆92Oct 19, 2025Updated 8 months ago
- ☆25Jun 2, 2024Updated 2 years ago
- Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.☆15Jul 30, 2022Updated 3 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Feb 17, 2022Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.☆16Oct 31, 2021Updated 4 years ago
- XDP Deployments in Userspace eBPF☆27Jul 23, 2025Updated 11 months ago
- A golang ebpf libary based on cilium/ebpf and datadog/ebpf.☆351May 18, 2025Updated last year
- ☆40Feb 15, 2022Updated 4 years ago
- Experiments with eBPF bytecode☆16Jul 17, 2025Updated 11 months ago
- ☆15Apr 28, 2023Updated 3 years ago
- A collection of kernels used for CI builds☆18Jun 23, 2026Updated last week