Go support for parsing, compiling, and installing Chromium OS Seccomp-BPF policy files.
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
翻译 - 轻量级进程隔离工具,利用Linux名称空间和seccomp-bpf syscall过滤器(借助kafel bpf语言)
Go library for installing a seccomp BPF system call filter.
# # Automatically generated file; DO NOT EDIT. # OpenWrt Configuration # CONFIG_MODULES=y CONFIG_HAVE_DOT_CONFIG=y # CONFIG_TARGET_sunxi is not set # CONFIG_TARGET_apm821xx is not set # CONFIG_TARGET_...
Linux namespaces and seccomp-bpf sandbox
翻译 - Linux名称空间和seccomp-bpf沙箱
Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).
OCI hook to trace syscalls and generate a seccomp profile
Provide powerful tools for seccomp analysis
Scaffolding for BPF application development with libbpf and BPF CO-RE
BPF Tools - packet analyst toolkit
Go bindings for creating BPF programs.
翻译 - 用于创建 BPF 程序的 Go 绑定。
The main libseccomp repository
Minimal Solana BPF program template
Declarative access policies/permissions modeled after AWS' IAM policies.
learn how to use BPF/eBPF
37signals policies, terms, and legal. Share them; reuse them; contribute to them.
翻译 - 大本营政策,条款和法律。分享他们;重用它们;为他们做出贡献。
A Toolchain to make Build and Run eBPF programs easier
Official repository for the BPF Performance Tools book
翻译 - BPF Performance Tools手册的官方资料库
Monitor network traffic per executable using BPF