BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.
β59Jun 30, 2022Updated 3 years ago
Alternatives and similar repositories for bpfcontain-rs
Users that are interested in bpfcontain-rs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- π BPFBox π¦ Exploring process confinement in eBPFβ106Jan 11, 2024Updated 2 years ago
- Various eBPF programs for tracing network connectionsβ32Oct 26, 2021Updated 4 years ago
- β11Feb 22, 2016Updated 10 years ago
- β27Nov 24, 2021Updated 4 years ago
- This is the repository for the code and artifacts related to the CCS2022 paper: C2C: Fine-grained Configuration-driven System Call Filterβ¦β11Nov 4, 2022Updated 3 years ago
- End-to-end encrypted email - Proton Mail β’ AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Making containers more secure with eBPF and Linux Security Modules (LSM)β234Jun 2, 2024Updated last year
- ebpH (Extended BPF Process Homeostasis) monitors process behavior on your system to establish normal behavioral patterns. ebpH reports anβ¦β42Dec 8, 2022Updated 3 years ago
- bpflock - eBPF driven security for locking and auditing Linux machinesβ152Feb 16, 2022Updated 4 years ago
- This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable thanβ¦β71May 3, 2022Updated 4 years ago
- Working examples of KRSI (via BCC scripts).β15Dec 21, 2020Updated 5 years ago
- A process level network security monitoring and enforcement project for Kubernetes, using eBPFβ44Jun 16, 2020Updated 5 years ago
- SysFlow edge processing pipelineβ18Jan 15, 2025Updated last year
- Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)β24Jun 15, 2023Updated 2 years ago
- Linux Kernel Runtime Integrity with eBPFβ186Nov 23, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean β’ AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A command line tool to automatically generate seccomp profiles.β27Apr 29, 2021Updated 5 years ago
- Example BPF program with LSM hooksβ36Feb 24, 2021Updated 5 years ago
- eBPF Steering Committee (BSC)β14Mar 26, 2026Updated last month
- CO-RE code for the Netdata eBPF plugin.β16Updated this week
- bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.β93Sep 21, 2025Updated 7 months ago
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes clusterβ36Jan 22, 2022Updated 4 years ago
- This project process eBPF events into Prometheus metrics via a Go user-space application. A Grafana dashboard is included to visualize Keβ¦β15Apr 22, 2025Updated last year
- Source code for DABANGG attack.β10Mar 26, 2022Updated 4 years ago
- Trace deep kernel events through eBPF and lsm hooksβ43Feb 9, 2021Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- This tool set can generate required capabilities for binaries. A system call to capability mapping is used to assign capability to the biβ¦β14Oct 26, 2022Updated 3 years ago
- UTrace is a tracing utility that leverages eBPF to trace both user space and kernel space functionsβ52Jan 18, 2022Updated 4 years ago
- eBPFε¦δΉβ19Jun 21, 2022Updated 3 years ago
- β11Aug 28, 2024Updated last year
- OCI hook to trace syscalls and generate a seccomp profileβ346Updated this week
- Diagrams to visually learn Falco and its eBPF probeβ15Jun 24, 2021Updated 4 years ago
- Build custom Docker seccomp profiles for containers by finding syscalls it uses.β92Oct 19, 2025Updated 6 months ago
- β25Jun 2, 2024Updated last year
- β13Oct 17, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.β15Jul 30, 2022Updated 3 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploitsβ21Feb 17, 2022Updated 4 years ago
- suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.β16Oct 31, 2021Updated 4 years ago
- XDP Deployments in Userspace eBPFβ27Jul 23, 2025Updated 9 months ago
- A golang ebpf libary based on cilium/ebpf and datadog/ebpf.β350May 18, 2025Updated 11 months ago
- Mimic is a eBPF virtual machine and emulator which runs in userspaceβ29May 28, 2022Updated 3 years ago
- β15Apr 28, 2023Updated 3 years ago