GitHub topics: bpf
the-tcpdump-group/tcpdump
the TCPdump network dissector
Language: C - Size: 26.6 MB - Last synced at: about 9 hours ago - Pushed at: about 10 hours ago - Stars: 2,903 - Forks: 873
zoidyzoidzoid/awesome-ebpf
A curated list of awesome projects related to eBPF.
Size: 144 KB - Last synced at: about 23 hours ago - Pushed at: 4 days ago - Stars: 4,576 - Forks: 388
Outfluencer/Minecraft-XDP-eBPF
The first and only publicly available Minecraft XDP Filter
Language: C - Size: 82 KB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 9 - Forks: 1
qmonnet/rbpf
Rust virtual machine and JIT compiler for eBPF programs
Language: Rust - Size: 930 KB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 995 - Forks: 277
seccomp/libseccomp
The main libseccomp repository
Language: C - Size: 1.91 MB - Last synced at: 1 day ago - Pushed at: 2 days ago - Stars: 848 - Forks: 181
cilium/pwru
Packet, where are you? -- eBPF-based Linux kernel networking debugger
Language: C - Size: 8.41 MB - Last synced at: 2 days ago - Pushed at: 3 days ago - Stars: 3,299 - Forks: 192
mozillazg/ptcpdump
Process-aware, eBPF-based tcpdump
Language: C - Size: 69.4 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 978 - Forks: 54
inspektor-gadget/inspektor-gadget
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF
Language: C - Size: 100 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 2,455 - Forks: 284
capstone-engine/capstone
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.
Language: C - Size: 62.6 MB - Last synced at: 2 days ago - Pushed at: 3 days ago - Stars: 8,000 - Forks: 1,589
elastic/quark
Language: C - Size: 13.4 MB - Last synced at: about 8 hours ago - Pushed at: 3 days ago - Stars: 18 - Forks: 2
bpftrace/bpftrace
High-level tracing language for Linux
Language: C++ - Size: 12.4 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 9,175 - Forks: 1,375
anfedotoff/bombini
eBPF security monitoring agent based on Aya
Language: Rust - Size: 362 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 5 - Forks: 0
cilium/tetragon
eBPF-based Security Observability and Runtime Enforcement
Language: C - Size: 74.5 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 3,949 - Forks: 415
pythops/oryx
🕵️♂️ TUI for sniffing network traffic using eBPF on Linux
Language: Rust - Size: 208 KB - Last synced at: 3 days ago - Pushed at: 12 days ago - Stars: 1,046 - Forks: 25
bnbdr/ida-bpf-processor
BPF Processor for IDA Python
Language: Python - Size: 37.1 KB - Last synced at: 2 days ago - Pushed at: over 6 years ago - Stars: 52 - Forks: 7
containerscrew/nflux
Network monitoring tool & TLS/SSL sniffer using eBPF 🐝
Language: Rust - Size: 1.88 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 3 - Forks: 0
aya-rs/aya
Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.
Language: Rust - Size: 7.74 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 3,591 - Forks: 322
libbpf/libbpf-rs
Minimal and opinionated eBPF tooling for the Rust ecosystem
Language: Rust - Size: 6 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 844 - Forks: 147
aquasecurity/tracee
Linux Runtime Security and Forensics using eBPF
Language: Go - Size: 172 MB - Last synced at: 5 days ago - Pushed at: 6 days ago - Stars: 3,861 - Forks: 444
parca-dev/parca
Continuous profiling for analysis of CPU and memory usage, down to the line number and throughout time. Saving infrastructure cost, improving performance, and increasing reliability.
Language: TypeScript - Size: 134 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 4,414 - Forks: 233
hengyoush/kyanos
Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient.
Language: C - Size: 37.9 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 4,108 - Forks: 157
ebpf-io/ebpf.io-website
ebpf.io Website
Language: HTML - Size: 265 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 123 - Forks: 130
cilium/cilium
eBPF-based Networking, Security, and Observability
Language: Go - Size: 385 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 21,529 - Forks: 3,184
kubearmor/KubeArmor
Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).
Language: Go - Size: 58.5 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 1,715 - Forks: 366
Orange-OpenSource/bmc-cache
In-kernel cache based on eBPF.
Language: C - Size: 436 KB - Last synced at: 5 days ago - Pushed at: over 3 years ago - Stars: 448 - Forks: 48
bpfsnoop/bpfsnoop
Modernized kernel functions, kernel tracepoints and bpf progs tracing tool for the bpf era.
Language: Go - Size: 3.48 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 85 - Forks: 5
hyperledger-solang/solang
Solidity Compiler for Solana, Polkadot and Stellar
Language: Rust - Size: 17.7 MB - Last synced at: 6 days ago - Pushed at: about 2 months ago - Stars: 1,326 - Forks: 237
gamemann/XDP-Proxy
A stateless, high-performance NAT-like proxy that attaches to the XDP hook in the Linux kernel using (e)BPF for fast packet processing. This proxy forwards packets based on configurable rules and performs source-port mapping, similar to IPTables and NFTables.
Language: C - Size: 3.71 MB - Last synced at: about 1 hour ago - Pushed at: about 1 month ago - Stars: 188 - Forks: 26
sbwml/kernel-latest-centos
Linux Kernel 6.12 LTS for CentOS 7
Language: Shell - Size: 285 KB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 12 - Forks: 1
gamemann/XDP-Firewall
A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is supported with this firewall! I hope this helps network engineers/programmers interested in utilizing XDP!
Language: C - Size: 4.64 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 636 - Forks: 103
markpash/find-bad-middleboxes 📦
This is the proof-of-concept code that accompanies the eBPF Summit lightning talk I gave called Bad middlebox!
Language: C - Size: 904 KB - Last synced at: 2 days ago - Pushed at: over 3 years ago - Stars: 12 - Forks: 1
cilium/charts
Helm charts repository for the Cilium project
Language: Shell - Size: 27.2 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 52 - Forks: 20
cloudflare/ebpf_exporter
Prometheus exporter for custom eBPF metrics
Language: Go - Size: 12.5 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 2,322 - Forks: 252
javierhonduco/lightswitch
CPU profiler as a library for Linux suitable for on-demand and continuous profiling running on BPF
Language: Rust - Size: 1.62 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 17 - Forks: 3
aliyun/surftrace
surftrace is a tool that allows you to surf the linux kernel
Language: Python - Size: 12 MB - Last synced at: 6 days ago - Pushed at: over 1 year ago - Stars: 334 - Forks: 60
florianl/go-tc
traffic control in pure go - it allows to read and alter queues, filters and classes
Language: Go - Size: 657 KB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 484 - Forks: 49
elastic/bpfcov
Source-code based coverage for eBPF programs actually running in the Linux kernel
Language: C - Size: 1.38 MB - Last synced at: 7 days ago - Pushed at: 3 months ago - Stars: 132 - Forks: 8
carloslack/KoviD
Red-Team Linux kernel rootkit
Language: C - Size: 26.8 MB - Last synced at: 11 days ago - Pushed at: 20 days ago - Stars: 362 - Forks: 60
parca-dev/parca-agent
eBPF based always-on profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!
Language: Go - Size: 64.1 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 615 - Forks: 76
containerscrew/csp
A Lightweight eBPF tool to monitor Podman egress traffic via cgroup egress hook (cgroup/skb) 🐝
Language: Rust - Size: 230 KB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 0 - Forks: 0
dkorunic/pktstat-bpf
TC, XDP, KProbe and CGroup eBPF based simple Ethernet interface traffic monitor and reporting tool
Language: C - Size: 3.92 MB - Last synced at: 12 days ago - Pushed at: 12 days ago - Stars: 97 - Forks: 5
bytedance/vArmor
vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.
Language: Go - Size: 70 MB - Last synced at: 12 days ago - Pushed at: 12 days ago - Stars: 362 - Forks: 37
jschwinger233/skbdump
ebpf-based tcpdump
Language: C - Size: 5.7 MB - Last synced at: 6 days ago - Pushed at: over 1 year ago - Stars: 89 - Forks: 7
libbpf/libbpf-sys
Rust bindings to libbpf from the Linux kernel
Language: Rust - Size: 232 KB - Last synced at: 12 days ago - Pushed at: 12 days ago - Stars: 221 - Forks: 50
mehrdadrad/tcpdog
eBPF based TCP observability.
Language: Go - Size: 2.31 MB - Last synced at: 5 days ago - Pushed at: almost 4 years ago - Stars: 259 - Forks: 22
landhb/DrawBridge
Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
Language: C - Size: 1.07 MB - Last synced at: 2 days ago - Pushed at: over 1 year ago - Stars: 114 - Forks: 23
aquasecurity/libbpfgo
eBPF library for Go. Powered by libbpf.
Language: Go - Size: 967 KB - Last synced at: 11 days ago - Pushed at: 24 days ago - Stars: 783 - Forks: 96
seccomp/libseccomp-golang
The libseccomp golang bindings repository
Language: Go - Size: 145 KB - Last synced at: 9 days ago - Pushed at: 18 days ago - Stars: 283 - Forks: 59
aya-rs/book
The Aya Book is an introductory book about using the Rust Programming Language and Aya library to build extended Berkley Packet Filter (eBPF) programs.
Language: HTML - Size: 2.05 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 88 - Forks: 61
DavadDi/skbtracer
skbtracer on ebpf
Language: C - Size: 17.6 KB - Last synced at: 4 days ago - Pushed at: over 3 years ago - Stars: 83 - Forks: 29
pearl-lang/pearl
pearl language - it's easy to create eBPF programs with pearl
Language: Rust - Size: 13.7 KB - Last synced at: 17 days ago - Pushed at: 17 days ago - Stars: 5 - Forks: 0
the-tcpdump-group/libpcap
the LIBpcap interface to various kernel packet capture mechanism
Language: C - Size: 19 MB - Last synced at: 16 days ago - Pushed at: 17 days ago - Stars: 2,838 - Forks: 882
lac-dcc/honey-potion
Writing eBPF programs with Elixir!
Language: C - Size: 5.31 MB - Last synced at: 17 days ago - Pushed at: 17 days ago - Stars: 270 - Forks: 11
libbpf/libbpf
Automated upstream mirror for libbpf stand-alone build.
Language: C - Size: 9.86 MB - Last synced at: 18 days ago - Pushed at: about 1 month ago - Stars: 2,355 - Forks: 434
openSVM/awesome-svm
All things SVM (Solana Virtual Machine)
Size: 20.5 KB - Last synced at: 5 days ago - Pushed at: 26 days ago - Stars: 14 - Forks: 4
Asphaltt/iptables-in-bpf
An iptables-like ACL implementation with eBPF.
Language: C - Size: 726 KB - Last synced at: 5 days ago - Pushed at: over 2 years ago - Stars: 8 - Forks: 2
the-tcpdump-group/tcpslice
tcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.
Language: C - Size: 768 KB - Last synced at: 24 days ago - Pushed at: 24 days ago - Stars: 73 - Forks: 24
Asphaltt/iptables-bpf
An example of iptables-bpf with Go+eBPF
Language: C - Size: 623 KB - Last synced at: 5 days ago - Pushed at: over 3 years ago - Stars: 17 - Forks: 1
muink/einat-ebpf Fork of EHfive/einat-ebpf
An eBPF-based Endpoint-Independent(Full Cone) NAT for Linux
Language: Rust - Size: 1.77 MB - Last synced at: 27 days ago - Pushed at: 27 days ago - Stars: 0 - Forks: 0
isovalent/ebeedex
Find your favorite eBee
Size: 16.3 MB - Last synced at: about 17 hours ago - Pushed at: about 1 month ago - Stars: 67 - Forks: 6
EHfive/einat-ebpf
An eBPF-based Endpoint-Independent(Full Cone) NAT for Linux
Language: Rust - Size: 1.95 MB - Last synced at: 28 days ago - Pushed at: 28 days ago - Stars: 238 - Forks: 15
xdp-project/bpf-examples
Making eBPF programming easier via build env and examples
Language: C - Size: 1.5 MB - Last synced at: 27 days ago - Pushed at: 2 months ago - Stars: 478 - Forks: 99
eunomia-bpf/awesome-ebpf-zh
与 eBPF 相关的精选项目的中文清单
Size: 197 KB - Last synced at: 24 days ago - Pushed at: about 2 years ago - Stars: 95 - Forks: 13
anoushk1234/zig-ebpf
Zig virtual machine for eBPF programs.
Language: Zig - Size: 5.61 MB - Last synced at: 2 days ago - Pushed at: 8 months ago - Stars: 27 - Forks: 3
libbpf/bpftool
Automated upstream mirror for bpftool stand-alone build.
Language: C - Size: 1.05 MB - Last synced at: 27 days ago - Pushed at: about 1 month ago - Stars: 493 - Forks: 91
rimubytes/PacketSage
Focused on packet filtering and kernel knowledge.
Language: C - Size: 10.6 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0
xdp-project/xdp-tutorial
XDP tutorial
Language: C - Size: 557 KB - Last synced at: about 1 month ago - Pushed at: about 2 months ago - Stars: 2,636 - Forks: 609
iovisor/kubectl-trace
Schedule bpftrace programs on your kubernetes cluster using the kubectl
Language: Go - Size: 9.11 MB - Last synced at: about 1 month ago - Pushed at: 10 months ago - Stars: 2,095 - Forks: 168
eunomia-bpf/bpf-developer-tutorial
eBPF Developer Tutorial: Learning eBPF Step by Step with Examples
Language: C - Size: 24.9 MB - Last synced at: about 1 month ago - Pushed at: 3 months ago - Stars: 3,017 - Forks: 423
eunomia-bpf/GPTtrace
Generate eBPF programs and tracing with ChatGPT
Language: Python - Size: 7.97 MB - Last synced at: 29 days ago - Pushed at: 9 months ago - Stars: 237 - Forks: 23
tw4452852/zbpf
Writing eBPF in Zig
Language: Zig - Size: 4.79 MB - Last synced at: 29 days ago - Pushed at: about 1 month ago - Stars: 154 - Forks: 8
trailofbits/ebpf-common
Various utilities useful for developers writing BPF tools
Language: C++ - Size: 150 KB - Last synced at: 20 days ago - Pushed at: about 2 years ago - Stars: 30 - Forks: 7
trailofbits/ebpfpub
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
Language: C++ - Size: 266 KB - Last synced at: 27 days ago - Pushed at: about 2 years ago - Stars: 116 - Forks: 8
trailofbits/ebpfault
A BPF-based syscall fault injector
Language: C++ - Size: 48.8 KB - Last synced at: 20 days ago - Pushed at: about 2 years ago - Stars: 100 - Forks: 10
oracle/bpftune
bpftune uses BPF to auto-tune Linux systems
Language: C - Size: 2.91 MB - Last synced at: 29 days ago - Pushed at: about 1 month ago - Stars: 1,583 - Forks: 85
hemslo/docker-bpf
Run ebpf programs in docker (e.g., bpftrace)
Language: Shell - Size: 9.77 KB - Last synced at: 10 days ago - Pushed at: over 2 years ago - Stars: 21 - Forks: 2
DavadDi/bpf_study
bpf 学习仓库
Language: C - Size: 25.6 MB - Last synced at: about 1 month ago - Pushed at: about 3 years ago - Stars: 1,452 - Forks: 334
jo-lund/jomon
A network forensics and sniffer tool
Language: C - Size: 1.59 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 42 - Forks: 3
strang1ato/nhi
:tv: Automatically capture all potentially useful information about each executed command (as well as its output) and get powerful querying mechanism
Language: Go - Size: 4.44 MB - Last synced at: about 1 month ago - Pushed at: 8 months ago - Stars: 314 - Forks: 11
lazypwny751/beefw
an Aya based network monitoring tool via eBPF
Language: Rust - Size: 30.3 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 1 - Forks: 0
Asphaltt/tailcall-issues
A tool to detect tailcall issues.
Language: C - Size: 587 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 1 - Forks: 0
mikeroyal/eBPF-Guide
eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.
Language: Go - Size: 181 KB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 576 - Forks: 55
linux-lock/bpflock
bpflock - eBPF driven security for locking and auditing Linux machines
Language: C - Size: 4.97 MB - Last synced at: 30 days ago - Pushed at: about 3 years ago - Stars: 147 - Forks: 14
n9v9/goland-fix-go-15787
Makeshift fix for GoLand issue GO-15787.
Language: C - Size: 4.88 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0
singchia/go-xtables
Go bindings for iptables, ebtables and arptables, which provide numerous features, extensions and more.
Language: Go - Size: 1.3 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 136 - Forks: 18
DavadDi/bpf_demo
Language: C - Size: 9.41 MB - Last synced at: 4 days ago - Pushed at: almost 3 years ago - Stars: 48 - Forks: 15
chenhengqi/bpf-examples
A collection of BPF examples
Language: Objective-C - Size: 620 KB - Last synced at: about 1 month ago - Pushed at: about 4 years ago - Stars: 39 - Forks: 10
jnidzwetzki/pg-lock-tracer
A eBPF based lock tracer for the PostgreSQL database
Language: Python - Size: 307 KB - Last synced at: 29 days ago - Pushed at: 4 months ago - Stars: 142 - Forks: 17
takehaya/Sys-Ebpf
Sys::Ebpf is a pure-perl library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.In other words eBPF Loader for written in Perl.
Language: Perl - Size: 235 KB - Last synced at: 27 days ago - Pushed at: 7 months ago - Stars: 32 - Forks: 2
dropbox/goebpf
Library to work with eBPF programs from Go
Language: Go - Size: 1.72 MB - Last synced at: about 1 month ago - Pushed at: about 1 year ago - Stars: 1,148 - Forks: 86
furkanonder/DnsTrace
Monitor DNS queries by host processes using eBPF!
Language: Python - Size: 515 KB - Last synced at: about 8 hours ago - Pushed at: 7 months ago - Stars: 170 - Forks: 9
getanteon/alaz
Alaz: Advanced eBPF Agent for Kubernetes Observability – Effortlessly monitor K8s service interactions and performance metrics in your K8s environment. Gain in-depth insights with service maps, metrics, and more, while staying alert to crucial system anomalies 🐝
Language: C - Size: 7.17 MB - Last synced at: about 1 month ago - Pushed at: 7 months ago - Stars: 679 - Forks: 33
polycube-network/polycube
eBPF/XDP-based software framework for fast network services running in the Linux kernel.
Language: C++ - Size: 20.3 MB - Last synced at: about 1 month ago - Pushed at: about 2 years ago - Stars: 511 - Forks: 102
kakkoyun/py-perf
A Proof-of-concept, low-overhead, sampling CPU profiler for Python implemented using eBPF.
Language: Rust - Size: 762 KB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 16 - Forks: 1
lithdew/alon
Remix for Solana.
Language: JavaScript - Size: 43 MB - Last synced at: 18 days ago - Pushed at: over 3 years ago - Stars: 105 - Forks: 15
mmisono/try-bpftrace-in-mac
Try bpftrace in macOS
Language: Dockerfile - Size: 1.95 KB - Last synced at: 28 days ago - Pushed at: almost 2 years ago - Stars: 6 - Forks: 2
furkanonder/beetrace
Trace your python process line by line with eBPF!
Language: Python - Size: 370 KB - Last synced at: 4 days ago - Pushed at: about 2 years ago - Stars: 257 - Forks: 4
Kioubit/pndpd
NDP Proxy / Responder daemon (IPv6)
Language: Go - Size: 84 KB - Last synced at: about 1 month ago - Pushed at: 6 months ago - Stars: 40 - Forks: 0
YutaroHayakawa/ipftrace2
A packet oriented Linux kernel function call tracer
Language: C - Size: 17.1 MB - Last synced at: about 1 month ago - Pushed at: about 1 year ago - Stars: 401 - Forks: 17
fjebaker/eBPF-energy-monitor
Monitoring energy usage with eBPF at process level granularity.
Language: Zig - Size: 176 KB - Last synced at: 1 day ago - Pushed at: over 1 year ago - Stars: 7 - Forks: 0
