bpf-lsm

Here are 4 public repositories matching this topic...

ErenAri / Aegis-BPF

Deterministic Linux runtime enforcement with eBPF LSM: block file/network operations before syscalls complete.

helm incident-response linux-kernel prometheus ebpf observability bpf linux-security container-security runtime-security policy-enforcement kubernetes-security cloud-native-security bpf-lsm workload-securi

Updated May 19, 2026
C++

gprocunier / blastwall

Star

SELinux, IdM, and AAP proof of concept for confining privileged automation and denying kernel exploit surfaces before jobs reach managed RHEL hosts.

Updated May 20, 2026
Python

alexandreboutrik / bouclier-bleu

Star

A modular Next-Generation Antivirus (NGAV) and Endpoint Detection & Response (EDR) for Linux, leveraging eBPF (LSM) and Rust for memory-safe userland.

c rust security telemetry ransomware siem ebpf linux-security lsm edr runtime-security libbpf bpf-lsm ngav

Updated May 18, 2026
Rust

nmicic / compartment

Star

Kernel-enforced sandboxing for untrusted processes. Two zero-dependency core tools, one shared profile format, plus an optional BPF-LSM module.

linux security namespace sandboxing process-isolation hardening ebpf seccomp linux-security-module privilege-separation defense-in-depth landlock bpf-lsm syscall-filtering

Updated May 20, 2026
Shell

Improve this page

Add a description, image, and links to the bpf-lsm topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the bpf-lsm topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

bpf-lsm

Here are 4 public repositories matching this topic...

ErenAri / Aegis-BPF

gprocunier / blastwall

alexandreboutrik / bouclier-bleu

nmicic / compartment

Improve this page

Add this topic to your repo