Slim(toolkit): Don't change anything in your container image and minify ...
Sandstorm is a self-hostable web productivity suite. It's implemented as...
Curated resources help you prepare for the CNCF/Linux Foundation CKS 202...
Provide powerful tools for seccomp analysis
A stupid game for learning about containers, capabilities, and syscalls.
The main libseccomp repository
Open-source Platform for learning kubernetes and aws eks and preparati...
The libseccomp golang bindings repository
A set of curated exercises to help you prepare for the CKS exam
eBPF Python runtime sandbox with seccomp (Blocks RCE).
Generate seccomp profiles from go binaries
Rust implementation of PRoot, a ptrace-based sandbox
Build custom Docker seccomp profiles for containers by finding syscalls ...
Go library for installing a seccomp BPF system call filter.
Record process launches and files read and written by each process