GitHub topics: runtime-security
aquasecurity/tracee
Linux Runtime Security and Forensics using eBPF
Language: Go - Size: 182 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 4,036 - Forks: 456
falcosecurity/falco
Cloud Native Runtime Security
Language: C++ - Size: 20.5 MB - Last synced at: 2 days ago - Pushed at: 5 days ago - Stars: 8,221 - Forks: 940
garnet-org/jibril-releases
Jibril releases (automated).
Size: 18.6 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 2 - Forks: 0
bugsmirror/MASST
Bugsmirror MASST (Mobile Application Security Suite and Tools) is a comprehensive platform for end-to-end mobile application security. It offers threat detection tools for static, runtime, dynamic API testing and red teaming; robust app shielding solution for threat mitigation; threat visibility dashboard; & AI powered insight in a single platform.
Size: 6.84 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 0 - Forks: 0
gardener/gardener-extension-shoot-falco-service
Gardener extension controller to deploy Falco into shoot clusters.
Language: Go - Size: 1.85 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 1 - Forks: 9
MobSF/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Language: JavaScript - Size: 1.42 GB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 19,332 - Forks: 3,462
Gui774ume/ebpfkit
ebpfkit is a rootkit powered by eBPF
Language: C - Size: 7.63 MB - Last synced at: 4 days ago - Pushed at: over 2 years ago - Stars: 808 - Forks: 94
step-security/harden-runner
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.
Language: TypeScript - Size: 28.9 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 869 - Forks: 76
bombinisecurity/bombini
eBPF security monitoring agent based on Aya
Language: Rust - Size: 698 KB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 31 - Forks: 1
fhnw-imvs/fhnw-kubeseccontext
Keep your Kubernetes workloads in tune — secure and functional.
Language: Go - Size: 4.8 MB - Last synced at: about 9 hours ago - Pushed at: 17 days ago - Stars: 1 - Forks: 0
aessecurity/oburix
eBPF-based runtime agent for Endpoint Detection and Response for Linux based operating systems.
Language: C - Size: 608 KB - Last synced at: 8 days ago - Pushed at: 18 days ago - Stars: 2 - Forks: 0
rbidou/pyrasp
PyRASP is a Runtime Application Self Protection package for Python-based Web Servers (Flask, FastAPI and Django), Serverless Functions (AWS Lambda, Azure and Google Cloud Functions) and MCP Servers (FastMCP)
Language: Python - Size: 5.36 MB - Last synced at: 5 days ago - Pushed at: 3 months ago - Stars: 32 - Forks: 3
yasindce1998/KubeDagger
Kubernetes offensive framework built in eBPF
Language: C - Size: 18.2 MB - Last synced at: 21 days ago - Pushed at: over 2 years ago - Stars: 38 - Forks: 2
valtirman/treeline-core
Language: Shell - Size: 27.4 MB - Last synced at: 30 days ago - Pushed at: 30 days ago - Stars: 0 - Forks: 0
garnet-org/api
client and types for garnet platform
Language: Go - Size: 124 KB - Last synced at: 9 days ago - Pushed at: 19 days ago - Stars: 0 - Forks: 0
kubearmor/policy-templates
Community curated list of System and Network policy templates for the KubeArmor and Cilium
Size: 2.48 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 46 - Forks: 46
chriskaliX/Hades
Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
Language: C - Size: 18.3 MB - Last synced at: about 2 months ago - Pushed at: 9 months ago - Stars: 295 - Forks: 55
listendev/action
Proactive security monitoring and threat detection in CI/CD
Language: TypeScript - Size: 3.08 MB - Last synced at: 1 day ago - Pushed at: 4 months ago - Stars: 15 - Forks: 0
aquasecurity/traceeshark
Deep Linux runtime visibility meets Wireshark
Language: C - Size: 1.75 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 292 - Forks: 17
ocalasans/dralyxor
Dralyxor: Advanced C++ header-only library for robust string obfuscation, shielding binaries from static/dynamic analysis. Uses a consteval micro-program engine with variable NOPs. Runtime anti-debug/tamper checks (canaries, content checksums) plus RAII "just-in-time" decryption ensure secure, minimal memory exposure of plain-text data.
Language: C++ - Size: 283 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 1 - Forks: 0
falcosecurity/kernel-testing
Ansible playbooks to provision firecracker VMs and run Falco kernel tests
Language: Dockerfile - Size: 23.6 MB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 12 - Forks: 5
marvisvault/.github
Size: 4.88 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0
listendev/jibril-releases 📦
Jibril: A performant and low impact Linux runtime security tool agent.
Language: Shell - Size: 1.67 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 13 - Forks: 2
willfindlay/bpfbox
🐝 BPFBox 📦 Exploring process confinement in eBPF
Language: C - Size: 4.52 MB - Last synced at: about 2 months ago - Pushed at: over 1 year ago - Stars: 103 - Forks: 9
kube-tarian/tarian
Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right threat elimination.
Language: Go - Size: 12.1 MB - Last synced at: 4 months ago - Pushed at: 9 months ago - Stars: 55 - Forks: 12
OWASP/iGoat-Swift
OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS
Language: C - Size: 190 MB - Last synced at: 4 months ago - Pushed at: about 1 year ago - Stars: 429 - Forks: 188
Gui774ume/ebpfkit-monitor
ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
Language: C - Size: 168 KB - Last synced at: 5 months ago - Pushed at: over 2 years ago - Stars: 128 - Forks: 17
iamgp21/capstone-runtime-sec
POC Repo for Implementing Runtime Security fo a Kubernetes Cluster.
Language: Go - Size: 728 KB - Last synced at: 5 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0
Loginsoft-LLC/Linux-Exploit-Detection
Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma
Language: Open Policy Agent - Size: 67.4 KB - Last synced at: 9 months ago - Pushed at: almost 2 years ago - Stars: 21 - Forks: 1
tigera-solutions/cc-aks-visualize-identify-security-gaps
This repository supports the "Microsoft AKS Security Bootcamp: Visualize cluster traffic and identify security gaps" workshop, providing step-by-step guidance for hands-on security experience, including network risk assessment, malware alerts, threat containment, anomaly detection, and policy enforcement.
Size: 29.3 KB - Last synced at: 5 months ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 3
amir9339/ebpf_maps_hooking
POC developed while writing the paper "A weakness in eBPF-based runtime security applications"
Language: C - Size: 36.1 KB - Last synced at: over 1 year ago - Pushed at: about 3 years ago - Stars: 0 - Forks: 0
tigera-solutions/cc-aks-implement-runtime-security
In this AKS-focused workshop, you will work with Calico Cloud to learn how to implement runtime security to protect containers in your Kubernetes cluster from known and zero-day threats based container and network attacks running on Microsoft AKS.
Size: 97.7 KB - Last synced at: 24 days ago - Pushed at: about 2 years ago - Stars: 1 - Forks: 1
nikhilnayak98/csvs
Security for Virtualization Systems Project
Language: Shell - Size: 118 KB - Last synced at: over 2 years ago - Pushed at: about 3 years ago - Stars: 0 - Forks: 0
