bpflock
Linux lockdown
A security solution using eBPF to restrict Linux access and protect against attacks
bpflock - eBPF driven security for locking and auditing Linux machines
138 stars
3 watching
14 forks
Language: C
last commit: about 3 years ago
Linked from 1 awesome list
bpfcontainersebpfiotiot-securitykernelkuberneteslsmsecurity
zoidyzoidzoid/awesome-ebpfRelated projects:
| Repository | Description | Stars |
|---|---|---|
 pathtofile/bad-bpf | Demonstrates security vulnerabilities in the Linux kernel's eBPF system | 556 |
 fzakaria/ebpf-mpls-encap-decap | Demonstrates packet encapsulation and decapsulation with MPLS labels using eBPF | 54 |
 aquasecurity/libbpfgo | A Go library providing an interface to eBPF programs from userspace | 748 |
 bpfman/bpfman | An eBPF manager for Linux and Kubernetes deployment and administration | 535 |
 gui774ume/ebpfkit | A rootkit powered by eBPF designed to demonstrate offensive security techniques and bypass kernel protections. | 766 |
 git-disl/lockdown | A backdoor defense system for federated learning, designed to protect against data poisoning attacks by isolating subspace training and aggregating models with robust consensus fusion. | 18 |
 libbpf/libbpf-rs | An Rust wrapper around libbpf to simplify BPF program development and build processes. | 791 |
| gui774ume/ebpfkit-monitor | A tool designed to detect and protect against certain types of malicious eBPF bytecode | 125 |
 eunomia-bpf/eunomia-bpf | A toolchain to simplify building and running eBPF programs with CO-RE and WebAssembly support | 687 |
| eunomia-bpf/wasm-bpf | An eBPF WebAssembly runtime and toolchain for building cross-platform, sandboxed eBPF programs with minimal modification. | 390 |
 belane/linux-soft-exploit-suggester | A script to identify vulnerabilities in software packages on Linux systems | 222 |
 rprinz08/hbpf | An experiment to implement eBPF features in hardware using alternate HDLs and cheap development boards | 403 |
 iovisor/ubpf | An eBPF VM that allows userspace execution of eBPF programs in a Linux kernel-independent way. | 841 |
 deepfence/ebpfguard | A Rust library that provides a user-space interface to write Linux security policies using eBPF | 293 |
 php-lock/lock | A library that provides a way to execute critical code in serialized fashion in concurrent situations. | 935 |