Linux Runtime Security and Forensics using eBPF
-
Updated
May 26, 2024 - Go
Linux Runtime Security and Forensics using eBPF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Cloud Native Runtime Security
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
Ansible playbooks to provision firecracker VMs and run Falco kernel tests
Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right t…
Community curated list of System and Network policy templates for the KubeArmor and Cilium
🐝 BPFBox 📦 Exploring process confinement in eBPF
Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma
This repository supports the "Microsoft AKS Security Bootcamp: Visualize cluster traffic and identify security gaps" workshop, providing step-by-step guidance for hands-on security experience, including network risk assessment, malware alerts, threat containment, anomaly detection, and policy enforcement.
In this AKS-focused workshop, you will work with Calico Cloud to learn how to implement runtime security to protect containers in your Kubernetes cluster from known and zero-day threats based container and network attacks running on Microsoft AKS.
Kubernetes offensive framework built in eBPF
ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
ebpfkit is a rootkit powered by eBPF
OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS
POC developed while writing the paper "A weakness in eBPF-based runtime security applications"
CentOS based Docker Security Architecture
Add a description, image, and links to the runtime-security topic page so that developers can more easily learn about it.
To associate your repository with the runtime-security topic, visit your repo's landing page and select "manage topics."