Skip to content

anvaypatil/ebpf_lsm_rs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
src
src
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
Makefile
Makefile
 
 
Readme.md
Readme.md
 
 

Repository files navigation

BPF-Rust

  • tracing execve calls
  • added lsm hooks with applying hooks preventing the sys call

To get started

  • Download git version of libbpf-rs by git clone
  • Move to the directory of libbpf-rs.
  • cargo install --path libbpf-rs/libbpf-cargo
  • cargo new bpf-rs
  • Adding entries to toml file
[dependencies]
anyhow = "1.0"
libbpf-rs = {path = "../libbpf-rs/libbpf-rs"}
libc = "0.2"

To Run it

  • make
  • sudo <exec-file>
  • to see the trace_pipe sudo cat /sys/kernel/tracing/trace_pipe

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages