runtime-security
There are 24 repositories under runtime-security topic.
MobSF/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
falcosecurity/falco
Cloud Native Runtime Security
aquasecurity/tracee
Linux Runtime Security and Forensics using eBPF
step-security/harden-runner
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.
Gui774ume/ebpfkit
ebpfkit is a rootkit powered by eBPF
OWASP/iGoat-Swift
OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS
chriskaliX/Hades
Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
aquasecurity/traceeshark
Deep Linux runtime visibility meets Wireshark
Gui774ume/ebpfkit-monitor
ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
willfindlay/bpfbox
🐝 BPFBox 📦 Exploring process confinement in eBPF
kube-tarian/tarian
Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right threat elimination.
kubearmor/policy-templates
Community curated list of System and Network policy templates for the KubeArmor and Cilium
yasindce1998/KubeDagger
Kubernetes offensive framework built in eBPF
rbidou/pyrasp
PyRASP is a Runtime Application Self Protection package for Python-based Web Servers (Flask, FastAPI and Django), Serverless Functions (AWS Lambda, Azure and Google Cloud Functions) and MCP Servers (FastMCP)
atellaluca/ImportSpy
Runtime validation for Python modules. Enforce compliant environments, prevent unsafe imports.
Loginsoft-LLC/Linux-Exploit-Detection
Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma
listendev/action
Proactive security monitoring and threat detection in CI/CD
listendev/jibril-releases
Jibril: A performant and low impact Linux runtime security tool agent.
falcosecurity/kernel-testing
Ansible playbooks to provision firecracker VMs and run Falco kernel tests
amir9339/ebpf_maps_hooking
POC developed while writing the paper "A weakness in eBPF-based runtime security applications"
nikhilnayak98/csvs
CentOS based Docker Security Architecture
tigera-solutions/cc-aks-implement-runtime-security
In this AKS-focused workshop, you will work with Calico Cloud to learn how to implement runtime security to protect containers in your Kubernetes cluster from known and zero-day threats based container and network attacks running on Microsoft AKS.
iamgp21/capstone-runtime-sec
POC Repo for Implementing Runtime Security fo a Kubernetes Cluster.
tigera-solutions/cc-aks-visualize-identify-security-gaps
This repository supports the "Microsoft AKS Security Bootcamp: Visualize cluster traffic and identify security gaps" workshop, providing step-by-step guidance for hands-on security experience, including network risk assessment, malware alerts, threat containment, anomaly detection, and policy enforcement.