BpfJailer is an eBPF-based process jailing system that provides mandatory access control (MAC) for Linux. It tracks processes using BPF task_storage maps and enforces role-based policies on file access, network operations, and process execution.

This project is based on the original idea and design by Liam Wisehart at Meta. Special thanks for the vision and foundational work that made BpfJailer possible.