bpfbox🐝 BPFBox 📦 Exploring process confinement in eBPF
Stars: ✭ 93 (-41.87%)
tcpslicetcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.
Stars: ✭ 48 (-70%)
el7-bpf-specsRPM specs for building bpf related tools on CentOS 7
Stars: ✭ 38 (-76.25%)
rbbccBCC port for MRI - this is unofficial bonsai project.
Stars: ✭ 45 (-71.87%)
Tcpdumpthe TCPdump network dissector
Stars: ✭ 1,731 (+981.88%)
BpftraceHigh-level tracing language for Linux eBPF
Stars: ✭ 4,526 (+2728.75%)
lmpLMP is a supermarket
Stars: ✭ 228 (+42.5%)
ilogtailFast and Lightweight Observability Data Collector
Stars: ✭ 1,035 (+546.88%)
iovisor-ovnIOVisor OVN integration
Stars: ✭ 62 (-61.25%)
hubble-uiObservability & Troubleshooting for Kubernetes Services
Stars: ✭ 210 (+31.25%)
TanjiHabbo Packet Sniffer/Analyzer
Stars: ✭ 33 (-79.37%)
ebpfpubebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
Stars: ✭ 86 (-46.25%)
ovs-ebpfNo description or website provided.
Stars: ✭ 34 (-78.75%)
swollan experimental suite of applications and APIs for monitoring kernel-level activity on a live Kubernetes cluster
Stars: ✭ 66 (-58.75%)
ebpfkit-monitorebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
Stars: ✭ 80 (-50%)
packifferlightweight cross-platform networking toolkit
Stars: ✭ 52 (-67.5%)
kernel new features一个深挖 Linux 内核的新功能特性,以 io_uring, cgroup, ebpf, llvm 为代表,包含开源项目,代码案例,文章,视频,架构脑图等
Stars: ✭ 1,094 (+583.75%)
hBPFhBPF = eBPF in hardware
Stars: ✭ 335 (+109.38%)
JxnetJxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).
Stars: ✭ 26 (-83.75%)
ipftrace[Deplicated] Now we have more sophisticated (and compact) implementation in ipftrace2 repository. Please check it as well.
Stars: ✭ 60 (-62.5%)
kube-knarkOpen Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster
Stars: ✭ 32 (-80%)
PersonalStuffThis is a repo is to upload files done during my research.
Stars: ✭ 94 (-41.25%)
go-tctraffic control in pure go - it allows to read and alter queues, filters and classes
Stars: ✭ 245 (+53.13%)
dscDNS Statistics Collector
Stars: ✭ 94 (-41.25%)
postgres-bccSet of scripts to monitor PostgreSQL at low level using bcc
Stars: ✭ 37 (-76.87%)
ebpfaultA BPF-based syscall fault injector
Stars: ✭ 65 (-59.37%)
zk-sniffersniffer and parse zookeeper packet
Stars: ✭ 38 (-76.25%)
portablebpfYou came here so you could have a base code to serve you as an example on how to develop a BPF application, compatible to BCC and/or LIBBPF, specially LIBBPF, having the userland part made in C or PYTHON.
Stars: ✭ 32 (-80%)
pixie-demosDemos for Pixie: github.com/pixie-io/pixie
Stars: ✭ 106 (-33.75%)
rvi capturervictl for Linux and Windows: capture packets sent/received by iOS devices
Stars: ✭ 124 (-22.5%)
p2pflowEthereum p2p traffic analysis with eBPF
Stars: ✭ 24 (-85%)
parca-agenteBPF based always-on profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!
Stars: ✭ 250 (+56.25%)
XDP-FirewallAn XDP firewall that is capable of filtering specific packets based off of filtering rules specified in a config file. IPv6 is supported!
Stars: ✭ 129 (-19.37%)
NetvisixNetvisix visualizes the network packet flow between hosts
Stars: ✭ 65 (-59.37%)
KubeArmorCloud-native Runtime Security Enforcement System
Stars: ✭ 434 (+171.25%)
ebpfkitebpfkit is a rootkit powered by eBPF
Stars: ✭ 472 (+195%)
ehidsA Linux Host-based Intrusion Detection System based on eBPF.
Stars: ✭ 210 (+31.25%)
qinstDraft of generic instrumentation tool based on QEMU using eBPF to implement trivial instrumentations with trivial code
Stars: ✭ 17 (-89.37%)
wireshamSimple TCP service mocking tool for replaying https://www.wireshark.org and http://www.tcpdump.org captured service traffic
Stars: ✭ 44 (-72.5%)
libbpf-sysRust bindings to libbpf from the Linux kernel
Stars: ✭ 103 (-35.62%)
arp-dns-attacksARP spoofing, HTTP redirection, DNS spoofing and DNS forging using pcap library
Stars: ✭ 25 (-84.37%)
Divert.Net.NET Wrapper for WinDivert
Stars: ✭ 51 (-68.12%)
ebpfElastic's eBPF
Stars: ✭ 45 (-71.87%)
ayaAya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.
Stars: ✭ 950 (+493.75%)
WinDivertSharpA minimal .NET binding over WinDivert
Stars: ✭ 91 (-43.12%)
sqredirectRedirection and filtering Source Engine game traffic in bundle with sqproxy
Stars: ✭ 21 (-86.87%)
perf-monitorKernel profiler based on perf_event and ebpf
Stars: ✭ 28 (-82.5%)
memfd-examplesSample usage of the new memfd_create(2) Linux system call.
Stars: ✭ 64 (-60%)
IngraindData first monitoring agent using (e)BPF, built on RedBPF
Stars: ✭ 251 (+56.88%)
xpcapCross-platform Packet Capture which supports Linux and macOS(BSD) in 1000 LOC without depending on libpcap.
Stars: ✭ 19 (-88.12%)
cilium-cliCLI to install, manage & troubleshoot Kubernetes clusters running Cilium
Stars: ✭ 162 (+1.25%)
Tcptracer BpfeBPF program using kprobes to trace TCP events without run-time compilation dependencies
Stars: ✭ 240 (+50%)
pixieInstant Kubernetes-Native Application Observability
Stars: ✭ 3,238 (+1923.75%)
libslibsinsp, libscap, the kernel module driver, and the eBPF driver sources
Stars: ✭ 92 (-42.5%)