# safeguard

**Repository Path**: openeuler/safeguard

## Basic Information

- **Project Name**: safeguard
- **Description**: 本项目已经迁移至 AtomGit  || This project has been migrated to AtomGit || Linked: https://atomgit.com/openeuler/safeguard
- **Primary Language**: Unknown
- **License**: Apache-2.0
- **Default Branch**: master
- **Homepage**: None
- **GVP Project**: No

## Statistics

- **Stars**: 40
- **Forks**: 22
- **Created**: 2023-09-18
- **Last Updated**: 2025-12-25

## Categories & Tags

**Categories**: security-dev

**Tags**: sig-ebpf

## README

# safeguard: KRSI(eBPF+LSM) based Linux security auditing tool

safeguard is a Linux audit and observer tool based on eBPF.
Security events can be audited and blocked based on the container of the process, and restrictions can be applied to container environments.

# Features

* Restriction rules based on process context, such as command name or UID and more
* Restrictions limited to containers
* Network Access Control
* File Access Control
* Restrictions bind mounts from host filesystem to containers

# Build

```shell
$ git clone --recursive https://gitee.com/openeuler/safeguard.git && cd safeguard
# $ vagrant up && vagrant reload
# $ vagrant ssh

$ make build

sudo ./build/safeguard --config config/safeguard.yml
```



# LICENSE

safeguard's userspace program is licensed under Apache License 2.0 License.  
eBPF programs inside [pkg/bpf directory](pkg/bpf) are licensed under [GNU General Public License version 2](./pkg/bpf/LICENSE.md).