lkrg
bouheki
Our great sponsors
lkrg | bouheki | |
---|---|---|
7 | 1 | |
387 | 74 | |
4.1% | - | |
7.9 | 0.0 | |
about 2 months ago | about 1 year ago | |
C | C | |
GNU General Public License v3.0 or later | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
lkrg
-
[Security] Questions about LKRG and Debian hardening-runtime
What's the difference between LKRG and hardening-runtimepackage?
- LKRG – Linux Kernel Runtime Guard
-
Tetragone: A Lesson in Security Fundamentals
Similar concerns affect LKRG. Check out the LKRG bypass article by Alexander Popov for the details.
-
windows kernel patch guard-like for linux ?
I'm not an expert, but I can think of two things related to the integrity of Linux kernel. Linux has the ability to mark itself tainted 1 if you, as example, load proprietary drivers. On the other hand, there's Linux Kernel Runtime Guard (LKRG) 2 that performs integrity check on Linux kernel and detects exploits.
-
Need help with template modification
I'll try to make this as succinct as possible. I use the Linux Kernel Runtime Guard with my kernel as a security measure, and I use xbps-src to compile the kernel myself.
- Linux Kernel Runtime Guard (LKRG)
- Linux Kernel Runtime Guard
bouheki
-
How to Prevent Data Exfiltration with eBPF
In this article, I will introduce bouheki, a tool that blocks data exfiltration by supply chain attacks and SSRF.
What are some alternatives?
ebpfkit - ebpfkit is a rootkit powered by eBPF
machine-learning-in-ebpf - This repository contains the code for the paper "A flow-based IDS using Machine Learning in eBPF", Contact: Maximilian Bachl
linux-hardened - Minimal supplement to upstream Kernel Self Protection Project changes. Features already provided by SELinux + Yama and archs other than multiarch arm64 / x86_64 aren't in scope. Only tags have stable history. Shared IRC channel with KSPP: irc.libera.chat #linux-hardening
zen-kernel - Zen Patched Kernel Sources
TripleCross - A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
fapolicyd - File Access Policy Daemon
gsocket - Connect like there is no firewall. Securely.
wiser - :racehorse: Extremely minimal vmm for linux written in C. Hopefully someday will spin linux-vm for you.
openbsm - OpenBSM open audit implementation
suhosin7 - Suhosin Extension for PHP 7.x
parca-agent - eBPF based always-on profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!