Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/mrtc0/bouheki

bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.
https://github.com/mrtc0/bouheki

audit ebpf firewall linux security

Last synced: 2 months ago
JSON representation

bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.

Awesome Lists containing this project

README

        

# bouheki: KRSI(eBPF+LSM) based Linux security auditing tool

bouheki is KRSI(eBPF+LSM) based Linux security auditing tool.
Security events can be audited and blocked based on the container of the process, and restrictions can be applied to container environments.

# Features

* Restriction rules based on process context, such as command name or UID and more
* Restrictions limited to containers
* Network Access Control
* File Access Control
* Restictions bind mounts from host filesystem to containers

# Getting Started

https://mrtc0.github.io/bouheki

# DEMO

[![asciicast](https://asciinema.org/a/475371.svg)](https://asciinema.org/a/475371)

# LICENSE

bouheki's userspace program is licensed under MIT License.
eBPF programs inside [pkg/bpf directory](pkg/bpf) are licensed under [GNU General Public License version 2](./pkg/bpf/LICENSE.md).