Real-time Threat Detection using eBPF + Rust

0 stars 1 forks 0 watchers Rust Apache License 2.0
ebpf kern kernel linux rust secu security-tools thread threat-detection
3 Open Issues Need Help Last updated: Aug 1, 2025

Open Issues Need Help

View All on GitHub
good first issue ui

Real-time Threat Detection using eBPF + Rust

Rust
#ebpf#kern#kernel#linux#rust#secu#security-tools#thread#threat-detection

AI Summary: Implement unit tests for the userspace rule engine in the rwatch project, covering YAML rule parsing, validation, and event matching scenarios. Tests should include both valid and invalid rule files and various event matching conditions.

Complexity: 3/5
good first issue testing

Real-time Threat Detection using eBPF + Rust

Rust
#ebpf#kern#kernel#linux#rust#secu#security-tools#thread#threat-detection

AI Summary: Implement a rule engine for the rwatch threat detection tool that processes captured execve events and matches them against rules defined in a YAML or JSON configuration file. The engine should trigger alerts when a rule is matched.

Complexity: 4/5
enhancement good first issue

Real-time Threat Detection using eBPF + Rust

Rust
#ebpf#kern#kernel#linux#rust#secu#security-tools#thread#threat-detection