#
seccomp
Here are 86 public repositories matching this topic...
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
kubernetes
security
policy
pod
certification
seccomp
apparmor
falco
exam-objectives
mitre-attack
open-policy-agent
kernel-hardening
kube-bench
pod-security-policy
cks
kubernetes-security
trivy
kube-hunter
ckss
os-footprint
-
Updated
Jun 14, 2022 - AGS Script
A stupid game for learning about containers, capabilities, and syscalls.
-
Updated
Apr 28, 2022 - JavaScript
Provide powerful tools for seccomp analysis
-
Updated
Jun 17, 2022 - Ruby
The Kubernetes Security Profiles Operator
kubernetes
kubernetes-operator
seccomp
apparmor
selinux
k8s-sig-node
seccomp-operator
seccomp-profiles
security-profiles
-
Updated
Jun 17, 2022 - C
Simplifying Seccomp enforcement in containerized or non-containerized apps
security
containers
security-hardening
seccomp
seccomp-filter
security-tools
karn
container-security
-
Updated
Oct 29, 2020 - Go
A set of curated exercises to help you prepare for the CKS exam
kubernetes
security
containers
static-analysis
opa
seccomp
audit-log
apparmor
containerd
security-tools
sysdig
falco
secrets-management
anchore
gvisor
kube-bench
cks
trivy
networkpolicies
-
Updated
May 28, 2022 - Shell
Build custom Docker seccomp profiles for containers by finding syscalls it uses.
-
Updated
Aug 17, 2020 - Python
Go library for installing a seccomp BPF system call filter.
-
Updated
Dec 16, 2021 - Go
Record process launches and files read and written by each process
-
Updated
Feb 15, 2021 - Go
Docker Secure Computing Profile Generator
-
Updated
Oct 22, 2021 - Go
Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.
-
Updated
Jun 8, 2022 - Go
BPF Processor for IDA Python
-
Updated
Aug 27, 2018 - Python
A high scalable low to medium interactive SSH/TCP honeypot using Linux Namespaces, capabilities, seccomp, cgroups designed for OpenWrt and IoT devices.
-
Updated
Jul 12, 2020 - C
Online Judge for testing programming ability in C, C++, Java and Python.
-
Updated
Jun 29, 2021 - JavaScript
A CSP endpoint to aggregate, correlate and analyze report-uri violations across your infrastructure
docker
infrastructure
flask
csp
security-audit
dashboard
logging
seccomp
report-uri
apparmor
security-tools
hardened-image
-
Updated
Feb 17, 2020 - Python
agent for handling seccomp descriptors for container runtimes
-
Updated
Jun 1, 2022 - Go
Start Linux programs with only selected syscalls enabled (libseccomp-based)
-
Updated
Jan 23, 2017 - C
DSL language to write seccomp filters
-
Updated
Apr 29, 2022 - C
xinetd-kafel is a more secure replacement for xinetd with secure computing (seccomp, only work on linux)
-
Updated
Jun 9, 2018 - C
rusty-snake
commented
May 31, 2022
SeccompErrno contains all errnos returned by the libseccomp api. However if you set ApiSysRawRc the errno from the kernel seccomp api is returned instead. This raises to problems
- The descriptions of the errno are not (always) correct.
- The kernel seccomp api can return errnos which are not returned by the libseccomp api.
1. Can be ignored IMHO because if you set `ApiSysRaw
-
Updated
Mar 23, 2022 - Shell
Improve this page
Add a description, image, and links to the seccomp topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the seccomp topic, visit your repo's landing page and select "manage topics."
Need to have a global flag to control the console output mode (
--json-outputor something like that).