seccomp
There are 126 repositories under seccomp topic.
slimtoolkit/slim
Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)
sandstorm-io/sandstorm
Sandstorm is a self-hostable web productivity suite. It's implemented as a security-hardened web app package manager.
walidshaari/Certified-Kubernetes-Security-Specialist
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
david942j/seccomp-tools
Provide powerful tools for seccomp analysis
genuinetools/contained.af
A stupid game for learning about containers, capabilities, and syscalls.
seccomp/libseccomp
The main libseccomp repository
ViktorUJ/cks
Open-source Platform for learning kubernetes and aws eks and preparation for for Certified Kubernetes exams (CKA ,CKS , CKAD)
kubernetes-sigs/security-profiles-operator
The Kubernetes Security Profiles Operator
seccomp/libseccomp-golang
The libseccomp golang bindings repository
moabukar/CKS-Exercises-Certified-Kubernetes-Security-Specialist
A set of curated exercises to help you prepare for the CKS exam
avilum/secimport
eBPF Python runtime sandbox with seccomp (Blocks RCE).
xfernando/go2seccomp
Generate seccomp profiles from go binaries
proot-me/proot-rs
Rust implementation of PRoot, a ptrace-based sandbox
grantseltzer/karn
Simplifying Seccomp enforcement in containerized or non-containerized apps
antitree/syscall2seccomp
Build custom Docker seccomp profiles for containers by finding syscalls it uses.
mintoolkit/mint
minT(oolkit): Awesome, secure and production ready containers just the way you need them! Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)
elastic/go-seccomp-bpf
Go library for installing a seccomp BPF system call filter.
rust-vmm/seccompiler
Provides easy-to-use Linux seccomp-bpf jailing.
orivej/fptrace
Record process launches and files read and written by each process
bnbdr/ida-bpf-processor
BPF Processor for IDA Python
msantos/alcove
Control plane for system processes
alegrey91/harpoon
🔍 Trace syscalls from user-space functions, by using eBPF
blacktop/seccomp-gen
Docker Secure Computing Profile Generator
antitree/keyctl-unmask
Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.
kinvolk/seccompagent
agent for handling seccomp descriptors for container runtimes
giuliocomi/csplogger
A CSP endpoint to aggregate, correlate and analyze report-uri violations across your infrastructure
msantos/prx
an Erlang library for interacting with Unix processes
giuseppe/easyseccomp
DSL language to write seccomp filters
healeycodes/untrusted-python
📦 Run untrusted python code on the server
libseccomp-rs/libseccomp-rs
Rust Language Bindings for the libseccomp Library
SamratV/Online-Judge
Online Judge for testing programming ability in C, C++, Java and Python.
utoni/potd
A high scalable low to medium interactive SSH/TCP honeypot using Linux Namespaces, capabilities, seccomp, cgroups designed for OpenWrt and IoT devices.
pjbgf-archives/zaz
A command line tool to automatically generate seccomp profiles.
kpcyrd/syscallz-rs
Simple seccomp library for rust
brynet/file
A portable version of OpenBSD's privsep/sandboxed file(1) utility
msantos/xmppipe
stdio over XMPP