XDP-FirewallAn XDP firewall that is capable of filtering specific packets based off of filtering rules specified in a config file. IPv6 is supported!
Stars: ✭ 129 (+148.08%)
Libpcapthe LIBpcap interface to various kernel packet capture mechanism
Stars: ✭ 1,785 (+3332.69%)
libbpf-sysRust bindings to libbpf from the Linux kernel
Stars: ✭ 103 (+98.08%)
oxdpusA toy tool that leverages the super powers of XDP to bring in-kernel IP filtering
Stars: ✭ 59 (+13.46%)
tcpslicetcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.
Stars: ✭ 48 (-7.69%)
CiliumeBPF-based Networking, Security, and Observability
Stars: ✭ 10,256 (+19623.08%)
PolycubeeBPF/XDP-based software framework for fast network services running in the Linux kernel.
Stars: ✭ 217 (+317.31%)
Tcpdumpthe TCPdump network dissector
Stars: ✭ 1,731 (+3228.85%)
LibtinsHigh-level, multiplatform C++ network packet sniffing and crafting library.
Stars: ✭ 1,609 (+2994.23%)
Awesome EbpfA curated list of awesome projects related to eBPF.
Stars: ✭ 1,102 (+2019.23%)
Ebpf exporter Prometheus exporter for custom eBPF metrics
Stars: ✭ 829 (+1494.23%)
ebpfpubebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
Stars: ✭ 86 (+65.38%)
libebpfExperiemental userspace eBPF library
Stars: ✭ 14 (-73.08%)
KubeArmorCloud-native Runtime Security Enforcement System
Stars: ✭ 434 (+734.62%)
TraceeLinux Runtime Security and Forensics using eBPF
Stars: ✭ 788 (+1415.38%)
bpflockbpflock - eBPF driven security for locking and auditing Linux machines
Stars: ✭ 54 (+3.85%)
connecttiny cross-platform socket API library
Stars: ✭ 46 (-11.54%)
pwruPacket, where are you? -- Linux kernel networking debugger
Stars: ✭ 694 (+1234.62%)
RbpfRust virtual machine and JIT compiler for eBPF programs
Stars: ✭ 306 (+488.46%)
BpfdFramework for running BPF programs with rules on Linux as a daemon. Container aware.
Stars: ✭ 396 (+661.54%)
BpftraceHigh-level tracing language for Linux eBPF
Stars: ✭ 4,526 (+8603.85%)
ayaAya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.
Stars: ✭ 950 (+1726.92%)
Kubectl TraceSchedule bpftrace programs on your kubernetes cluster using the kubectl
Stars: ✭ 1,194 (+2196.15%)
Libbpf RsMinimal and opinionated eBPF tooling for the Rust ecosystem
Stars: ✭ 116 (+123.08%)
Xdp ProjectXDP project collaboration through a git-repo
Stars: ✭ 127 (+144.23%)
NpfNPF: packet filter with stateful inspection, NAT, IP sets, etc.
Stars: ✭ 160 (+207.69%)
el7-bpf-specsRPM specs for building bpf related tools on CentOS 7
Stars: ✭ 38 (-26.92%)
bouhekiTool for Preventing Data Exfiltration with eBPF
Stars: ✭ 28 (-46.15%)
sniffer🤒 A modern alternative network traffic sniffer.
Stars: ✭ 428 (+723.08%)
go-tctraffic control in pure go - it allows to read and alter queues, filters and classes
Stars: ✭ 245 (+371.15%)
TcpdogeBPF based TCP observability.
Stars: ✭ 119 (+128.85%)
ovs-ebpfNo description or website provided.
Stars: ✭ 34 (-34.62%)
portablebpfYou came here so you could have a base code to serve you as an example on how to develop a BPF application, compatible to BCC and/or LIBBPF, specially LIBBPF, having the userland part made in C or PYTHON.
Stars: ✭ 32 (-38.46%)
ebpfaultA BPF-based syscall fault injector
Stars: ✭ 65 (+25%)
SkydiveAn open source real-time network topology and protocols analyzer
Stars: ✭ 2,086 (+3911.54%)
GoebpfLibrary to work with eBPF programs from Go
Stars: ✭ 666 (+1180.77%)
LAFLinux Application Firewall
Stars: ✭ 8 (-84.62%)
ebpfeBPF package for Go
Stars: ✭ 25 (-51.92%)
p2pflowEthereum p2p traffic analysis with eBPF
Stars: ✭ 24 (-53.85%)
moleYara powered NIDS with high speed packet capture powered by PF_RING
Stars: ✭ 51 (-1.92%)
giocgolang ioc framework
Stars: ✭ 33 (-36.54%)
Splunk TA paloaltoThe Palo Alto Networks Add-on for Splunk allows a Splunk® Enterprise or Splunk Cloud administrator to collect data from Palo Alto Networks Next-Generation Firewall devices and Advanced Endpoint Protection.
Stars: ✭ 15 (-71.15%)
nftables-exampleA playground ruleset to get to know nftables syntax
Stars: ✭ 19 (-63.46%)
kernel new features一个深挖 Linux 内核的新功能特性,以 io_uring, cgroup, ebpf, llvm 为代表,包含开源项目,代码案例,文章,视频,架构脑图等
Stars: ✭ 1,094 (+2003.85%)
pcap-fileCrate to read and write pcap and pcapng files in RUST.
Stars: ✭ 25 (-51.92%)
termsharkA terminal UI for tshark, inspired by Wireshark
Stars: ✭ 7,368 (+14069.23%)
defense-matrixExpress security essentials deployment for Linux Servers
Stars: ✭ 61 (+17.31%)
FragscapyFragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.
Stars: ✭ 52 (+0%)
Red-Rabbit-V4The Red Rabbit project is just what a hacker needs for everyday automation. Red Rabbit unlike most frameworks out there does not automate other peoples tools like the aircrack suite or the wifite framework, it rather has its own code and is raw source with over 270+ options. This framework might just be your everyday key to your workflow
Stars: ✭ 123 (+136.54%)
packet cafeA platform built for easy-to-use automated network traffic analysis
Stars: ✭ 40 (-23.08%)
DaggerAutoInjectInject automatically your Activities & Fragments, just with a simple annotation
Stars: ✭ 49 (-5.77%)
DrawBridgeLayer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
Stars: ✭ 81 (+55.77%)
scutumLinux Automatic ARP (TCP / UDP / ICMP) Firewall
Stars: ✭ 79 (+51.92%)
cni-pluginsCNI Plugins compatible with nftables
Stars: ✭ 29 (-44.23%)
opensnitchOpenSnitch is a GNU/Linux port of the Little Snitch application firewall
Stars: ✭ 7,734 (+14773.08%)
WerkHigh-throughput / low-latency C++ application framework
Stars: ✭ 30 (-42.31%)