confine
Seccomp profile generator
Generates Seccomp profiles to reduce Linux kernel vulnerabilities in containers
This tool set can generate SECCOMP profiles for Docker images. It mainly relies on static analysis, making its results more reliable than currently available tools.
62 stars
6 watching
15 forks
Language: Python
last commit: over 2 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 containers/oci-seccomp-bpf-hook | An OCI hook that generates seccomp profiles by tracing syscalls in containers | 305 |
 dev-sec/cis-docker-benchmark | A tool for automating security audits of Docker environments | 490 |
 simplysecurity/simplytemplate | Automates phishing template generation with customizable options and compatibility with various platforms | 163 |
 scotty-c/dirty-cow-poc | A proof-of-concept demonstrating the vulnerability of unsecured containers to privilege escalation attacks | 12 |
 clouditera/secgpt | Develops and shares a large language model for network security applications, enabling the exploration of AI in cybersecurity. | 1,953 |
 nccgroup/demiguise | Generates encrypted HTA files to evade content inspection and sandboxing by using RC4 encryption and dynamic key fetching | 1,372 |
| nccgroup/conmachi | Analyzes and reports on the security configuration of a container environment | 106 |
| nccgroup/shocker | A tool to identify and exploit vulnerable servers using Python | 333 |
 spencerdodd/kernelpop | Automated framework for discovering and exploiting kernel vulnerabilities on Linux and macOS. | 687 |
 infosecn1nja/maliciousmacromsbuild | Generates malicious macros to bypass application whitelisting and execute powershell or shellcode via MSBuild. | 495 |
 goabout/kustomize-sopssecretgenerator | Generates secrets from encrypted files using the sops tool | 113 |
 stelligent/cfn_nag | A tool to automatically scan and enforce security best practices in CloudFormation templates. | 1,260 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |
 secforce/snmp-brute | Automates brute force attempts on network devices using SNMP protocol | 298 |
 kennysong/tinysmpc | A tiny Python library for collaborative secure multi-party computation on private data | 87 |