
Linux Kernel Runtime Guard (LKRG) protects the kernel. It provides security through diversity. Similar to running an uncommon operating system (kernel) would. [1]
It renders whole classes of kernel exploits ineffective. Makes other exploits less reliable and more difficult to write (see features and security). LKRG was developed by a security professional with review from other high profile security professionals (see authorship).
Available for Debian, Whonix, Qubes [¹].
Known issue: LKRG kills VirtualBox host VMs
[¹] Qubes Debian VMs with VM kernel only. Qubes LKRG Instructions