Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Cloud Native Runtime Security

Linux Runtime Security and Forensics using eBPF

ebpfkit is a rootkit powered by eBPF

Network egress filtering and runtime security for GitHub-hosted and self-hosted runners

OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS

Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)

ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits

🐝 BPFBox 📦 Exploring process confinement in eBPF

Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right t…

Kubernetes offensive framework built in eBPF

Community curated list of System and Network policy templates for the KubeArmor and Cilium

Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma

Ansible playbooks to provision firecracker VMs and run Falco kernel tests

CentOS based Docker Security Architecture

In this AKS-focused workshop, you will work with Calico Cloud to learn how to implement runtime security to protect containers in your Kubernetes cluster from known and zero-day threats based container and network attacks running on Microsoft AKS.

POC developed while writing the paper "A weakness in eBPF-based runtime security applications"

Hands-on lab Falco runtime security

This repository supports the "Microsoft AKS Security Bootcamp: Visualize cluster traffic and identify security gaps" workshop, providing step-by-step guidance for hands-on security experience, including network risk assessment, malware alerts, threat containment, anomaly detection, and policy enforcement.