bpflock

Linux lockdown

A security solution using eBPF to restrict Linux access and protect against attacks

bpflock - eBPF driven security for locking and auditing Linux machines

GitHub

138 stars
3 watching
14 forks
Language: C
last commit: about 3 years ago
Linked from 1 awesome list

bpfcontainersebpfiotiot-securitykernelkuberneteslsmsecurity

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
pathtofile/bad-bpf Demonstrates security vulnerabilities in the Linux kernel's eBPF system 556
fzakaria/ebpf-mpls-encap-decap Demonstrates packet encapsulation and decapsulation with MPLS labels using eBPF 54
aquasecurity/libbpfgo A Go library providing an interface to eBPF programs from userspace 748
bpfman/bpfman An eBPF manager for Linux and Kubernetes deployment and administration 535
gui774ume/ebpfkit A rootkit powered by eBPF designed to demonstrate offensive security techniques and bypass kernel protections. 766
git-disl/lockdown A backdoor defense system for federated learning, designed to protect against data poisoning attacks by isolating subspace training and aggregating models with robust consensus fusion. 18
libbpf/libbpf-rs An Rust wrapper around libbpf to simplify BPF program development and build processes. 791
gui774ume/ebpfkit-monitor A tool designed to detect and protect against certain types of malicious eBPF bytecode 125
eunomia-bpf/eunomia-bpf A toolchain to simplify building and running eBPF programs with CO-RE and WebAssembly support 687
eunomia-bpf/wasm-bpf An eBPF WebAssembly runtime and toolchain for building cross-platform, sandboxed eBPF programs with minimal modification. 390
belane/linux-soft-exploit-suggester A script to identify vulnerabilities in software packages on Linux systems 222
rprinz08/hbpf An experiment to implement eBPF features in hardware using alternate HDLs and cheap development boards 403
iovisor/ubpf An eBPF VM that allows userspace execution of eBPF programs in a Linux kernel-independent way. 841
deepfence/ebpfguard A Rust library that provides a user-space interface to write Linux security policies using eBPF 293
php-lock/lock A library that provides a way to execute critical code in serialized fashion in concurrent situations. 935