”seccomp-bpf-policies“ 的搜索结果

Go support for parsing, compiling, and installing Chromium OS Seccomp-BPF policy files.

A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.

Merged to firejail; Find syscalls of executables for seccomp-bpf sandbox policies.

Go library for installing a seccomp BPF system call filter.

🔒 download, verify & run torbrowser in a sandbox

Linux namespaces and seccomp-bpf sandbox

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

OCI hook to trace syscalls and generate a seccomp profile

Scaffolding for BPF application development with libbpf and BPF CO-RE

Provide powerful tools for seccomp analysis

vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.

bpf 学习仓库

BPF Tools - packet analyst toolkit

Generate seccomp profiles from go binaries

Go bindings for creating BPF programs.

The main libseccomp repository

Useful IT policies

Minimal Solana BPF program template

Simple Linux seccomp rules without writing any code

37signals policies, terms, and legal. Share them; reuse them; contribute to them.

learn how to use BPF/eBPF

Sandbox implemented in GO with container / ptrace / seccomp

A Toolchain to make Build and Run eBPF programs easier