2 repository-uri
Frameworks and modules that restrict process capabilities and protect the operating system kernel from exploits.
Distinct from Kernel Security Audits: Shortlist candidates focus on auditing and data splicing rather than runtime capability restriction modules.
Explore 2 awesome GitHub repositories matching security & cryptography · Kernel Security Modules. Refine with filters or upvote what's useful.
This project is a Buildroot-based Linux distribution and embedded home server operating system designed to host containerized home automation services. It serves as a dedicated platform that manages the hardware and software requirements of a local smart home hub. The system is built as an immutable operating system, utilizing a read-only root filesystem and image-based updates to ensure consistent versioning and prevent accidental changes. It employs container-based process isolation to decouple applications from the core operating system. The platform provides a supervised container manage
Employs kernel-level security modules to restrict process capabilities and protect the underlying system.
Asterinas is a memory-safe operating system kernel designed to prevent data races and memory corruption. It functions as a Linux-ABI compatible kernel, enabling the execution of existing Linux binaries and container workloads while providing a declarative operating system distribution model. The project distinguishes itself by acting as a virtual machine container host and a confidential computing guest OS, allowing it to run within hardware-isolated Trusted Execution Environments such as Intel TDX. It implements a minimal trusted computing base by isolating unsafe low-level operations and se
Limits unsafe code execution by utilizing a minimal Trusted Computing Base in the construction of kernel modules.