GitHub topics: bpf
kubearmor/KubeArmor
Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).
Language: Go - Size: 63.9 MB - Last synced at: 29 minutes ago - Pushed at: about 2 hours ago - Stars: 1,746 - Forks: 371
parca-dev/parca
Continuous profiling for analysis of CPU and memory usage, down to the line number and throughout time. Saving infrastructure cost, improving performance, and increasing reliability.
Language: TypeScript - Size: 135 MB - Last synced at: about 20 hours ago - Pushed at: about 21 hours ago - Stars: 4,477 - Forks: 234
Outfluencer/Minecraft-XDP-eBPF
The first and only publicly available Minecraft XDP Filter, protecting your server from layer 7 DDoS attacks
Language: C - Size: 210 KB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 45 - Forks: 6
hengyoush/kyanos
Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient.
Language: C - Size: 38 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 4,483 - Forks: 183
jo-lund/jomon
A network forensics and passive sniffer tool
Language: C - Size: 1.66 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 50 - Forks: 4
gamemann/XDP-Firewall
A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is supported with this firewall! I hope this helps network engineers/programmers interested in utilizing XDP!
Language: C - Size: 4.64 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 668 - Forks: 109
gamemann/XDP-Proxy
A stateless, high-performance NAT-like proxy that attaches to the XDP hook in the Linux kernel using (e)BPF for fast packet processing. This proxy forwards packets based on configurable rules and performs source-port mapping, similar to IPTables and NFTables.
Language: C - Size: 3.71 MB - Last synced at: 1 day ago - Pushed at: 2 days ago - Stars: 219 - Forks: 31
containerscrew/nflux
Network monitoring tool. Powered by eBPF 🐝
Language: Rust - Size: 3.1 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 4 - Forks: 0
furkanonder/DnsTrace
Monitor DNS queries by host processes using eBPF!
Language: Python - Size: 539 KB - Last synced at: 1 day ago - Pushed at: 17 days ago - Stars: 172 - Forks: 10
libbpf/libbpf-rs
Minimal and opinionated eBPF tooling for the Rust ecosystem
Language: Rust - Size: 6.13 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 855 - Forks: 151
inspektor-gadget/inspektor-gadget
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF
Language: C - Size: 103 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 2,480 - Forks: 288
cilium/cilium
eBPF-based Networking, Security, and Observability
Language: Go - Size: 396 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 21,831 - Forks: 3,253
bytedance/vArmor
vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.
Language: Go - Size: 70.2 MB - Last synced at: about 11 hours ago - Pushed at: about 12 hours ago - Stars: 375 - Forks: 41
zoidyzoidzoid/awesome-ebpf
A curated list of awesome projects related to eBPF.
Size: 144 KB - Last synced at: 2 days ago - Pushed at: about 1 month ago - Stars: 4,634 - Forks: 388
cilium/tetragon
eBPF-based Security Observability and Runtime Enforcement
Language: C - Size: 74.6 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 4,019 - Forks: 423
eunomia-bpf/bpf-developer-tutorial
eBPF Developer Tutorial: Learning eBPF Step by Step with Examples
Language: C - Size: 25 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 3,157 - Forks: 445
libbpf/bpftool
Automated upstream mirror for bpftool stand-alone build.
Language: C - Size: 1.06 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 526 - Forks: 93
elastic/quark
Language: C - Size: 13.5 MB - Last synced at: 2 days ago - Pushed at: 3 days ago - Stars: 18 - Forks: 2
eunomia-bpf/libbpf-starter-template
Template designed to get new developers with libbpf development.
Language: C - Size: 1.56 MB - Last synced at: about 2 hours ago - Pushed at: 12 days ago - Stars: 59 - Forks: 23
capstone-engine/capstone
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.
Language: C - Size: 62.7 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 8,082 - Forks: 1,597
LorenzoTettamanti/BPF-Trace-Utility-Tool
Find Linux kernel insights about kprobe and tracepoints using bpftrace
Language: Shell - Size: 540 KB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 3 - Forks: 1
cilium/pwru
Packet, where are you? -- eBPF-based Linux kernel networking debugger
Language: C - Size: 8.36 MB - Last synced at: 4 days ago - Pushed at: 7 days ago - Stars: 3,359 - Forks: 195
bpfsnoop/bpfsnoop
Modernized kernel functions, kernel tracepoints and bpf progs tracing tool for the bpf era.
Language: Go - Size: 3.51 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 96 - Forks: 7
aquasecurity/libbpfgo
eBPF library for Go. Powered by libbpf.
Language: Go - Size: 979 KB - Last synced at: 3 days ago - Pushed at: 17 days ago - Stars: 792 - Forks: 96
florianl/go-tc
traffic control in pure go - it allows to read and alter queues, filters and classes
Language: Go - Size: 695 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 487 - Forks: 49
mozillazg/ptcpdump
Process-aware, eBPF-based tcpdump
Language: C - Size: 72.6 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 1,024 - Forks: 54
pythops/oryx
🕵️♂️ TUI for sniffing network traffic using eBPF on Linux
Language: Rust - Size: 255 KB - Last synced at: 5 days ago - Pushed at: 12 days ago - Stars: 1,309 - Forks: 37
bpftrace/bpftrace
High-level tracing language for Linux
Language: C++ - Size: 13.3 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 9,273 - Forks: 1,382
tw4452852/zbpf
Writing eBPF in Zig
Language: Zig - Size: 4.71 MB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 169 - Forks: 9
jschwinger233/skbdump
ebpf-based tcpdump
Language: C - Size: 5.94 MB - Last synced at: 4 days ago - Pushed at: 9 days ago - Stars: 91 - Forks: 7
qmonnet/rbpf
Rust virtual machine and JIT compiler for eBPF programs
Language: Rust - Size: 937 KB - Last synced at: 9 days ago - Pushed at: 16 days ago - Stars: 1,003 - Forks: 282
the-tcpdump-group/tcpdump
the TCPdump network dissector
Language: C - Size: 26.7 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 2,928 - Forks: 875
mehrdadrad/tcpdog
eBPF based TCP observability.
Language: Go - Size: 2.31 MB - Last synced at: 5 days ago - Pushed at: almost 4 years ago - Stars: 260 - Forks: 22
anfedotoff/bombini
eBPF security monitoring agent based on Aya
Language: Rust - Size: 485 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 7 - Forks: 0
hyperledger-solang/solang
Solidity Compiler for Solana, Polkadot and Stellar
Language: Rust - Size: 17.9 MB - Last synced at: 6 days ago - Pushed at: 11 days ago - Stars: 1,345 - Forks: 245
libbpf/libbpf-sys
Rust bindings to libbpf from the Linux kernel
Language: Rust - Size: 229 KB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 226 - Forks: 50
EHfive/einat-ebpf
An eBPF-based Endpoint-Independent(Full Cone) NAT for Linux
Language: Rust - Size: 1.96 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 255 - Forks: 14
dkorunic/pktstat-bpf
TC, XDP, KProbe and CGroup eBPF based simple Ethernet interface traffic monitor and reporting tool
Language: C - Size: 3.92 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 106 - Forks: 5
libbpf/libbpf
Automated upstream mirror for libbpf stand-alone build.
Language: C - Size: 10 MB - Last synced at: 12 days ago - Pushed at: about 1 month ago - Stars: 2,391 - Forks: 445
aquasecurity/tracee
Linux Runtime Security and Forensics using eBPF
Language: Go - Size: 173 MB - Last synced at: 14 days ago - Pushed at: 14 days ago - Stars: 3,915 - Forks: 449
seccomp/libseccomp
The main libseccomp repository
Language: C - Size: 1.91 MB - Last synced at: 12 days ago - Pushed at: about 1 month ago - Stars: 854 - Forks: 181
cilium/charts
Helm charts repository for the Cilium project
Language: Shell - Size: 28.1 MB - Last synced at: 14 days ago - Pushed at: 14 days ago - Stars: 55 - Forks: 20
javierhonduco/lightswitch
CPU profiler as a library for Linux suitable for on-demand and continuous profiling running on BPF
Language: Rust - Size: 1.67 MB - Last synced at: 15 days ago - Pushed at: 15 days ago - Stars: 17 - Forks: 3
markpash/find-bad-middleboxes 📦
This is the proof-of-concept code that accompanies the eBPF Summit lightning talk I gave called Bad middlebox!
Language: C - Size: 904 KB - Last synced at: 4 days ago - Pushed at: almost 4 years ago - Stars: 13 - Forks: 1
eunomia-bpf/awesome-ebpf-zh
与 eBPF 相关的精选项目的中文清单
Size: 197 KB - Last synced at: about 12 hours ago - Pushed at: about 2 years ago - Stars: 98 - Forks: 13
aya-rs/aya
Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.
Language: Rust - Size: 7.86 MB - Last synced at: 17 days ago - Pushed at: 17 days ago - Stars: 3,663 - Forks: 325
aya-rs/book
The Aya Book is an introductory book about using the Rust Programming Language and Aya library to build extended Berkley Packet Filter (eBPF) programs.
Language: HTML - Size: 2.11 MB - Last synced at: 17 days ago - Pushed at: 17 days ago - Stars: 90 - Forks: 63
oskardrums/ebpf
Erlang interface to eBPF
Language: Erlang - Size: 259 KB - Last synced at: 10 days ago - Pushed at: over 1 year ago - Stars: 55 - Forks: 2
seccomp/libseccomp-golang
The libseccomp golang bindings repository
Language: Go - Size: 146 KB - Last synced at: 7 days ago - Pushed at: about 1 month ago - Stars: 287 - Forks: 58
ebpf-io/ebpf.io-website
ebpf.io Website
Language: HTML - Size: 267 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 124 - Forks: 132
xdp-project/xdp-project
XDP project collaboration through a git-repo
Language: CSS - Size: 47.7 MB - Last synced at: 7 days ago - Pushed at: 23 days ago - Stars: 290 - Forks: 38
the-tcpdump-group/libpcap
the LIBpcap interface to various kernel packet capture mechanism
Language: C - Size: 19 MB - Last synced at: 22 days ago - Pushed at: 22 days ago - Stars: 2,860 - Forks: 889
parca-dev/parca-agent
eBPF based always-on profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!
Language: Go - Size: 64.1 MB - Last synced at: 22 days ago - Pushed at: 22 days ago - Stars: 623 - Forks: 77
oracle/bpftune
bpftune uses BPF to auto-tune Linux systems
Language: C - Size: 2.91 MB - Last synced at: 22 days ago - Pushed at: 2 months ago - Stars: 1,611 - Forks: 86
sbwml/kernel-latest-centos
Linux Kernel 6.12 LTS for CentOS 7
Language: Shell - Size: 286 KB - Last synced at: 23 days ago - Pushed at: 23 days ago - Stars: 13 - Forks: 1
kasd/texporter
texporter is a lightweight, high-performance eBPF-based network traffic exporter for Prometheus.
Language: Go - Size: 1.89 MB - Last synced at: 25 days ago - Pushed at: 25 days ago - Stars: 40 - Forks: 2
Orange-OpenSource/bmc-cache
In-kernel cache based on eBPF.
Language: C - Size: 436 KB - Last synced at: 25 days ago - Pushed at: over 3 years ago - Stars: 450 - Forks: 50
YutaroHayakawa/ipftrace2
A packet oriented Linux kernel function call tracer
Language: C - Size: 17.1 MB - Last synced at: 25 days ago - Pushed at: about 1 year ago - Stars: 402 - Forks: 17
mikeroyal/eBPF-Guide
eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.
Language: Go - Size: 181 KB - Last synced at: 26 days ago - Pushed at: over 1 year ago - Stars: 584 - Forks: 55
eunomia-bpf/GPTtrace
Generate eBPF programs and tracing with ChatGPT
Language: Python - Size: 7.97 MB - Last synced at: 25 days ago - Pushed at: 10 months ago - Stars: 241 - Forks: 23
getanteon/alaz
Alaz: Advanced eBPF Agent for Kubernetes Observability – Effortlessly monitor K8s service interactions and performance metrics in your K8s environment. Gain in-depth insights with service maps, metrics, and more, while staying alert to crucial system anomalies 🐝
Language: C - Size: 7.17 MB - Last synced at: 27 days ago - Pushed at: 9 months ago - Stars: 688 - Forks: 32
openSVM/awesome-svm
All things SVM (Solana Virtual Machine)
Size: 31.3 KB - Last synced at: 28 days ago - Pushed at: 28 days ago - Stars: 17 - Forks: 4
gamemann/XDP-TCP-Header-Options
Repository for attempting to parse TCP header options in XDP.
Language: C - Size: 50.8 KB - Last synced at: 20 days ago - Pushed at: over 3 years ago - Stars: 19 - Forks: 2
mildsunrise/node_bpf
🔬 eBPF / libbpf bindings for Node.js
Language: TypeScript - Size: 1.43 MB - Last synced at: 24 days ago - Pushed at: over 3 years ago - Stars: 34 - Forks: 4
gamemann/xdp-playground
Stores XDP programs and loaders I use for testing/helping others with (e)BPF and XDP.
Language: C - Size: 13.7 KB - Last synced at: 1 day ago - Pushed at: 7 months ago - Stars: 8 - Forks: 1
xdp-project/bpf-examples
Making eBPF programming easier via build env and examples
Language: C - Size: 1.5 MB - Last synced at: 28 days ago - Pushed at: 4 months ago - Stars: 488 - Forks: 105
xdp-project/xdp-tutorial
XDP tutorial
Language: C - Size: 557 KB - Last synced at: 30 days ago - Pushed at: 3 months ago - Stars: 2,659 - Forks: 613
the-tcpdump-group/tcpslice
tcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.
Language: C - Size: 768 KB - Last synced at: 25 days ago - Pushed at: about 1 month ago - Stars: 74 - Forks: 24
pearl-lang/pearl
pearl language - it's easy to create eBPF programs with pearl
Language: Rust - Size: 17.6 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 5 - Forks: 0
cloudflare/ebpf_exporter
Prometheus exporter for custom eBPF metrics
Language: Go - Size: 12.5 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 2,327 - Forks: 252
iovisor/kubectl-trace
Schedule bpftrace programs on your kubernetes cluster using the kubectl
Language: Go - Size: 9.11 MB - Last synced at: 29 days ago - Pushed at: 11 months ago - Stars: 2,110 - Forks: 169
FireTail-io/firetail-kubernetes-sensor
FireTail Kubernetes Sensor using ebpf
Language: Go - Size: 2.17 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 0 - Forks: 0
dropbox/goebpf
Library to work with eBPF programs from Go
Language: Go - Size: 1.72 MB - Last synced at: 28 days ago - Pushed at: over 1 year ago - Stars: 1,151 - Forks: 86
jedisct1/rust-bpf
A Rust crate to attach BPF filters
Language: Rust - Size: 18.6 KB - Last synced at: 5 days ago - Pushed at: about 1 month ago - Stars: 14 - Forks: 4
lac-dcc/honey-potion
Writing eBPF programs with Elixir!
Language: C - Size: 5.31 MB - Last synced at: 25 days ago - Pushed at: 26 days ago - Stars: 273 - Forks: 11
jnidzwetzki/pg-lock-tracer
A eBPF based lock tracer for the PostgreSQL database
Language: Python - Size: 307 KB - Last synced at: 27 days ago - Pushed at: 6 months ago - Stars: 149 - Forks: 17
genuinetools/bpfd
Framework for running BPF programs with rules on Linux as a daemon. Container aware.
Language: Go - Size: 3.57 MB - Last synced at: 28 days ago - Pushed at: about 4 years ago - Stars: 477 - Forks: 40
isovalent/ebeedex
Find your favorite eBee
Size: 16.3 MB - Last synced at: 2 days ago - Pushed at: 2 months ago - Stars: 68 - Forks: 7
netbound/p2pflow
Ethereum p2p traffic analysis with eBPF
Language: C - Size: 4.07 MB - Last synced at: 5 days ago - Pushed at: over 3 years ago - Stars: 56 - Forks: 8
peter-mcconnell/dilih
simple ebpf chaos engineering tool meant to demonstrate how easy building an eBPF project can be
Language: Go - Size: 155 KB - Last synced at: about 1 month ago - Pushed at: about 2 years ago - Stars: 15 - Forks: 2
Stefan20162016/linux-insides-code
Language: Assembly - Size: 1.41 MB - Last synced at: 13 days ago - Pushed at: over 3 years ago - Stars: 18 - Forks: 4
DavadDi/bpf_study
bpf 学习仓库
Language: C - Size: 25.6 MB - Last synced at: 28 days ago - Pushed at: about 3 years ago - Stars: 1,457 - Forks: 334
polycube-network/polycube
eBPF/XDP-based software framework for fast network services running in the Linux kernel.
Language: C++ - Size: 20.3 MB - Last synced at: 27 days ago - Pushed at: over 2 years ago - Stars: 514 - Forks: 102
bnbdr/ida-bpf-processor
BPF Processor for IDA Python
Language: Python - Size: 37.1 KB - Last synced at: about 1 month ago - Pushed at: almost 7 years ago - Stars: 52 - Forks: 7
eunomia-bpf/eunomia-template
Compile eBPF program with GitHub Actions and Run locally in one line!
Language: C - Size: 43.9 KB - Last synced at: about 2 hours ago - Pushed at: about 2 years ago - Stars: 27 - Forks: 8
aliyun/surftrace
surftrace is a tool that allows you to surf the linux kernel
Language: Python - Size: 12 MB - Last synced at: 27 days ago - Pushed at: almost 2 years ago - Stars: 334 - Forks: 51
elastic/bpfcov
Source-code based coverage for eBPF programs actually running in the Linux kernel
Language: C - Size: 1.38 MB - Last synced at: 2 days ago - Pushed at: 4 months ago - Stars: 132 - Forks: 8
carloslack/KoviD
Red-Team Linux kernel rootkit
Language: C - Size: 26.8 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 362 - Forks: 60
yuuki/go-conntracer-bpf
Go library using eBPF to trace network flow events
Language: C - Size: 8.93 MB - Last synced at: 14 days ago - Pushed at: about 4 years ago - Stars: 35 - Forks: 2
containerscrew/csp
A Lightweight eBPF tool to monitor Podman egress traffic via cgroup egress hook (cgroup/skb) 🐝
Language: Rust - Size: 230 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0
landhb/DrawBridge
Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
Language: C - Size: 1.07 MB - Last synced at: 25 days ago - Pushed at: over 1 year ago - Stars: 114 - Forks: 23
DavadDi/skbtracer
skbtracer on ebpf
Language: C - Size: 17.6 KB - Last synced at: about 1 month ago - Pushed at: over 3 years ago - Stars: 83 - Forks: 29
strang1ato/nhi
:tv: Automatically capture all potentially useful information about each executed command (as well as its output) and get powerful querying mechanism
Language: Go - Size: 4.44 MB - Last synced at: about 1 month ago - Pushed at: 9 months ago - Stars: 317 - Forks: 11
Asphaltt/iptables-in-bpf
An iptables-like ACL implementation with eBPF.
Language: C - Size: 726 KB - Last synced at: about 1 month ago - Pushed at: over 2 years ago - Stars: 8 - Forks: 2
Asphaltt/iptables-bpf
An example of iptables-bpf with Go+eBPF
Language: C - Size: 623 KB - Last synced at: about 1 month ago - Pushed at: over 3 years ago - Stars: 17 - Forks: 1
eunomia-bpf/bpf-benchmark
Userspace eBPF Runtime Benchmarking Test Suite and Results
Language: Python - Size: 62.9 MB - Last synced at: about 2 hours ago - Pushed at: about 1 year ago - Stars: 14 - Forks: 3
eunomia-bpf/wasm-bpf-rs
A WebAssembly eBPF runtime based on wasmtime in rust
Language: Rust - Size: 968 KB - Last synced at: about 2 hours ago - Pushed at: over 2 years ago - Stars: 10 - Forks: 1
muink/einat-ebpf Fork of EHfive/einat-ebpf
An eBPF-based Endpoint-Independent(Full Cone) NAT for Linux
Language: Rust - Size: 1.77 MB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0
anoushk1234/zig-ebpf
Zig virtual machine for eBPF programs.
Language: Zig - Size: 5.61 MB - Last synced at: 4 days ago - Pushed at: 10 months ago - Stars: 27 - Forks: 3
rimubytes/PacketSage
Focused on packet filtering and kernel knowledge.
Language: C - Size: 10.6 MB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0
