Self-defending security agent for Linux and macOS. 19 detectors, 11 response skills, 6 eBPF kernel programs (tracepoints + kprobe + LSM + XDP). Blocks at wire-speed, detects privilege escalation in...
Show HN: Inner Warden – Self-Defending Security Agent: eBPF+LSM+XDP (Rust, 29MB)
The article introduces Inner Warden, a self-defending security agent for Linux and macOS that uses eBPF, LSM, and XDP to block attacks at wire-speed, including privilege escalation via 19 detectors and 11 response skills. This tool is designed to proactively defend against unauthorized privilege escalation attempts in real-time across supported operating systems. Organizations with Linux/macOS environments should evaluate its deployment to mitigate privilege escalation risks.