KRIe is a research project that aims to detect Linux Kernel exploits with eBPF. KRIe is far from being a …

KRIe is a research project that aims to detect Linux Kernel exploits with eBPF. KRIe is far from being a …
TripleCross is a Linux eBPF rootkit that demonstrates the offensive capabilities of the eBPF technology. TripleCross is inspired by previous …
peetch is a collection of tools aimed at experimenting with different aspects of eBPF to bypass TLS protocol protections. Currently, …
bpflock – eBPF driven security for locking and auditing Linux machines. Note: bpflock is currently in experimental stage, it may …
pamspy leverage eBPF technologies to achieve an equivalent work of 3snake. It will track a particular userland function inside the …
lockc is open source sofware for providing MAC (Mandatory Access Control) type of security audit for container workloads. The main …
Tracee is a lightweight and easy to use container and system tracing tool. It allows you to observe system calls …