josedonizetti
Follow
Starred repositories
Linux Runtime Security and Forensics using eBPF
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF
Protect GitHub Actions with Tracee
Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.
❄️ Coolest database around 🧊 Embeddable column database written in Go.
A reading list for software supply-chain security.
eBPF-based Security Observability and Runtime Enforcement
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
Hunt for security weaknesses in Kubernetes clusters
An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
BTFhub, in collaboration with the BTFhub Archive repository, supplies BTF files for all published kernels that lack native support for embedded BTF. This joint effort ensures that even kernels with…
Common go library shared across sigstore services and clients
A static analysis tool for securing Go code
bpflock - eBPF driven security for locking and auditing Linux machines
Instant Kubernetes-Native Application Observability
Linux Kernel Defence Map shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and defence technologies
The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.
Shipwright - a framework for building container images on Kubernetes
