aquasecurity/libbpfgo

eBPF library for Go. Powered by libbpf.

Language: Go - Size: 863 KB - Last synced: 4 days ago - Pushed: 25 days ago - Stars: 670 - Forks: 92

javierhonduco/rbperf

Low-overhead sampling profiler and tracer for Ruby implemented in BPF

Language: Rust - Size: 1.9 MB - Last synced: 11 days ago - Pushed: 14 days ago - Stars: 116 - Forks: 5

the-tcpdump-group/tcpdump

the TCPdump network dissector

Language: C - Size: 28.8 MB - Last synced: about 6 hours ago - Pushed: about 7 hours ago - Stars: 2,558 - Forks: 823

qmonnet/rbpf

Rust virtual machine and JIT compiler for eBPF programs

Language: Rust - Size: 751 KB - Last synced: about 13 hours ago - Pushed: 3 days ago - Stars: 827 - Forks: 201

aquasecurity/tracee

Linux Runtime Security and Forensics using eBPF

Language: Go - Size: 130 MB - Last synced: about 13 hours ago - Pushed: 3 days ago - Stars: 3,263 - Forks: 387

jo-lund/jomon

A network forensics and sniffer tool

Language: C - Size: 1.52 MB - Last synced: about 20 hours ago - Pushed: about 21 hours ago - Stars: 33 - Forks: 3

libbpf/libbpf-sys

Rust bindings to libbpf from the Linux kernel

Language: Rust - Size: 172 KB - Last synced: about 20 hours ago - Pushed: about 21 hours ago - Stars: 171 - Forks: 40

aya-rs/aya

Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.

Language: Rust - Size: 5.5 MB - Last synced: about 23 hours ago - Pushed: 1 day ago - Stars: 2,706 - Forks: 240

iovisor/kubectl-trace

Schedule bpftrace programs on your kubernetes cluster using the kubectl

Language: Go - Size: 9.13 MB - Last synced: about 13 hours ago - Pushed: about 15 hours ago - Stars: 1,975 - Forks: 162

cilium/charts

Helm charts repository for the Cilium project

Language: Shell - Size: 16.7 MB - Last synced: 2 days ago - Pushed: 2 days ago - Stars: 33 - Forks: 16

libbpf/libbpf-rs

Minimal and opinionated eBPF tooling for the Rust ecosystem

Language: Rust - Size: 4.71 MB - Last synced: 1 day ago - Pushed: 2 days ago - Stars: 639 - Forks: 125

zoidyzoidzoid/awesome-ebpf

A curated list of awesome projects related to eBPF.

Size: 363 KB - Last synced: about 15 hours ago - Pushed: 27 days ago - Stars: 3,889 - Forks: 344

ebpf-io/ebpf.io-website

ebpf.io Website

Language: HTML - Size: 168 MB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 109 - Forks: 106

getanteon/alaz

Alaz: Advanced eBPF Agent for Kubernetes Observability – Effortlessly monitor K8s service interactions and performance metrics in your K8s environment. Gain in-depth insights with service maps, metrics, distributed tracing, and more, while staying alert to crucial system anomalies 🐝

Language: C - Size: 5.3 MB - Last synced: 2 days ago - Pushed: 3 days ago - Stars: 585 - Forks: 26

the-tcpdump-group/libpcap

the LIBpcap interface to various kernel packet capture mechanism

Language: C - Size: 17.6 MB - Last synced: 2 days ago - Pushed: 3 days ago - Stars: 2,523 - Forks: 816

cloudflare/ebpf_exporter

Prometheus exporter for custom eBPF metrics

Language: Go - Size: 10.2 MB - Last synced: 3 days ago - Pushed: 4 days ago - Stars: 2,032 - Forks: 218

libbpf/libbpf

Automated upstream mirror for libbpf stand-alone build.

Language: C - Size: 9.73 MB - Last synced: 3 days ago - Pushed: 4 days ago - Stars: 1,951 - Forks: 393

udzura/mruby-bcc

mruby Binding of BPF-Based Linux Tracing: see https://github.com/iovisor/bcc

Language: C - Size: 15.6 KB - Last synced: 4 days ago - Pushed: almost 5 years ago - Stars: 2 - Forks: 0

kubearmor/KubeArmor

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

Language: Go - Size: 53.3 MB - Last synced: 3 days ago - Pushed: 4 days ago - Stars: 1,279 - Forks: 309

xdp-project/xdp-project

XDP project collaboration through a git-repo

Language: CSS - Size: 39.3 MB - Last synced: about 13 hours ago - Pushed: 16 days ago - Stars: 250 - Forks: 35

florianl/go-tc

traffic control in pure go - it allows to read and alter queues, filters and classes

Language: Go - Size: 551 KB - Last synced: 4 days ago - Pushed: 15 days ago - Stars: 406 - Forks: 44

EHfive/einat-ebpf

An eBPF-based Endpoint-Independent(Full Cone) NAT for Linux

Language: Rust - Size: 1.53 MB - Last synced: 7 days ago - Pushed: 7 days ago - Stars: 101 - Forks: 3

tw4452852/zbpf

Writing eBPF in Zig

Language: Zig - Size: 3.14 MB - Last synced: about 13 hours ago - Pushed: 7 days ago - Stars: 70 - Forks: 4

carloslack/KoviD

Linux kernel rootkit

Language: C - Size: 26.5 MB - Last synced: 6 days ago - Pushed: 6 days ago - Stars: 195 - Forks: 42

eunomia-bpf/awesome-ebpf-zh

与 eBPF 相关的精选项目的中文清单

Size: 197 KB - Last synced: 2 days ago - Pushed: about 1 year ago - Stars: 57 - Forks: 8

linux-lock/bpflock

bpflock - eBPF driven security for locking and auditing Linux machines

Language: C - Size: 4.97 MB - Last synced: about 13 hours ago - Pushed: about 2 years ago - Stars: 134 - Forks: 13

navarrothiago/upf-bpf

An In-Kernel Solution Based on BPF/XDP for 5G UPF

Language: C++ - Size: 1.51 MB - Last synced: about 13 hours ago - Pushed: 2 months ago - Stars: 187 - Forks: 28

eunomia-bpf/GPTtrace

Generate eBPF programs and tracing with ChatGPT and natural language

Language: Python - Size: 7.97 MB - Last synced: 3 days ago - Pushed: 4 months ago - Stars: 179 - Forks: 19

sbwml/kernel-latest-centos

Linux Kernel 6.6 LTS for CentOS 7

Language: Shell - Size: 479 KB - Last synced: 2 days ago - Pushed: 3 days ago - Stars: 3 - Forks: 0

libbpf/bpftool

Automated upstream mirror for bpftool stand-alone build.

Language: C - Size: 1.11 MB - Last synced: 10 days ago - Pushed: 10 days ago - Stars: 302 - Forks: 61

jnidzwetzki/pg-lock-tracer

A eBPF based lock tracer for the PostgreSQL database

Language: Python - Size: 300 KB - Last synced: 6 days ago - Pushed: 6 days ago - Stars: 122 - Forks: 14

mehrdadrad/tcpdog

eBPF based TCP observability.

Language: Go - Size: 2.31 MB - Last synced: about 21 hours ago - Pushed: almost 3 years ago - Stars: 249 - Forks: 22

gamemann/XDP-Firewall

A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is supported with this firewall! I hope this helps network engineers/programmers interested in utilizing XDP!

Language: C - Size: 1.11 MB - Last synced: 4 days ago - Pushed: 13 days ago - Stars: 458 - Forks: 87

dkorunic/pktstat-bpf

TC and XDP eBPF based simple Ethernet interface traffic monitor and reporting tool

Language: Go - Size: 261 KB - Last synced: 12 days ago - Pushed: 12 days ago - Stars: 12 - Forks: 0

cilium/tetragon

eBPF-based Security Observability and Runtime Enforcement

Language: Go - Size: 65.2 MB - Last synced: 14 days ago - Pushed: 14 days ago - Stars: 3,277 - Forks: 310

cilium/pwru

Packet, where are you? -- eBPF-based Linux kernel networking debugger

Language: C - Size: 5.83 MB - Last synced: 13 days ago - Pushed: 13 days ago - Stars: 2,454 - Forks: 154

ljishen/bts

BPF-based Linux Tool Suite

Size: 17.6 KB - Last synced: 14 days ago - Pushed: over 6 years ago - Stars: 0 - Forks: 0

eunomia-bpf/bpf-benchmark

Userspace eBPF Runtime Benchmarking Test Suite and Results

Language: Python - Size: 62.9 MB - Last synced: 14 days ago - Pushed: 14 days ago - Stars: 9 - Forks: 1

kassane/libbpf Fork of libbpf/libbpf

Automated upstream mirror for libbpf stand-alone build.

Language: C - Size: 8.83 MB - Last synced: 2 days ago - Pushed: 16 days ago - Stars: 2 - Forks: 0

singchia/go-xtables

🛡 Go bindings for iptables, ebtables and arptables, which provide numerous features, extensions and more.

Language: Go - Size: 1.15 MB - Last synced: 14 days ago - Pushed: about 2 months ago - Stars: 145 - Forks: 21

capstone-engine/capstone

Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), BPF, Ethereum VM, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

Language: C - Size: 50.7 MB - Last synced: 22 days ago - Pushed: 23 days ago - Stars: 7,001 - Forks: 1,494

DavadDi/bpf_study

bpf 学习仓库

Language: C - Size: 25.6 MB - Last synced: 18 days ago - Pushed: about 2 years ago - Stars: 1,335 - Forks: 322

fshahinfar1/kashk

Generate BPF kernel offload from source code of applications

Language: Python - Size: 1.51 MB - Last synced: 18 days ago - Pushed: 23 days ago - Stars: 0 - Forks: 0

bendahl/eBPF-Evaluation 📦

eBPF Framework Evaluation Project

Language: Rust - Size: 137 KB - Last synced: 18 days ago - Pushed: 18 days ago - Stars: 0 - Forks: 0

Mansurow/bmstu-iu7-5sem-research-work

Научно-исследовательская работа (НИРС) на тему сетевого мониторинга ядра ОС Linux

Language: TeX - Size: 12.2 MB - Last synced: 19 days ago - Pushed: about 1 year ago - Stars: 0 - Forks: 0

seccomp/libseccomp

The main libseccomp repository

Language: C - Size: 1.81 MB - Last synced: 17 days ago - Pushed: 17 days ago - Stars: 770 - Forks: 163

DavadDi/skbtracer

skbtracer on ebpf

Language: C - Size: 17.6 KB - Last synced: 18 days ago - Pushed: over 2 years ago - Stars: 75 - Forks: 29

Asphaltt/skbtracer Fork of DavadDi/skbtracer 📦

skbtracer on ebpf

Language: C - Size: 1.24 MB - Last synced: 18 days ago - Pushed: about 1 year ago - Stars: 68 - Forks: 10

lithdew/alon

Remix for Solana.

Language: JavaScript - Size: 43 MB - Last synced: 3 days ago - Pushed: over 2 years ago - Stars: 99 - Forks: 13

inspektor-gadget/inspektor-gadget

The eBPF tool and systems inspection framework for Kubernetes, containers and Linux hosts.

Language: C - Size: 83.9 MB - Last synced: 22 days ago - Pushed: 23 days ago - Stars: 1,917 - Forks: 180

ygrek/ocaml-bpf

OCaml embedded eBPF assembler

Language: OCaml - Size: 12.7 KB - Last synced: 16 days ago - Pushed: about 2 years ago - Stars: 20 - Forks: 2

bpftrace/bpftrace

High-level tracing language for Linux eBPF

Language: C++ - Size: 8.1 MB - Last synced: 22 days ago - Pushed: 23 days ago - Stars: 7,907 - Forks: 1,264

cilium/cilium

eBPF-based Networking, Security, and Observability

Language: Go - Size: 292 MB - Last synced: 21 days ago - Pushed: 22 days ago - Stars: 18,436 - Forks: 2,673

vladd12/bpf-program

eBPF program for net traffic filtering

Language: C++ - Size: 164 KB - Last synced: 23 days ago - Pushed: 23 days ago - Stars: 1 - Forks: 0

msantos/ewpcap

Portable native Erlang raw socket interface using pcap

Language: Erlang - Size: 133 KB - Last synced: 16 days ago - Pushed: 4 months ago - Stars: 33 - Forks: 13

parca-dev/parca-agent

eBPF based always-on profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!

Language: Go - Size: 63.4 MB - Last synced: 22 days ago - Pushed: 22 days ago - Stars: 471 - Forks: 65

parca-dev/parca

Continuous profiling for analysis of CPU and memory usage, down to the line number and throughout time. Saving infrastructure cost, improving performance, and increasing reliability.

Language: TypeScript - Size: 113 MB - Last synced: 23 days ago - Pushed: 23 days ago - Stars: 3,803 - Forks: 204

oracle/bpftune

bpftune uses BPF to auto-tune Linux systems

Language: C - Size: 1.5 MB - Last synced: 21 days ago - Pushed: 5 months ago - Stars: 630 - Forks: 71

Asphaltt/iptables-in-bpf

An iptables-like ACL implementation with eBPF.

Language: C - Size: 726 KB - Last synced: 18 days ago - Pushed: over 1 year ago - Stars: 8 - Forks: 2

YutaroHayakawa/ipftrace2

A packet oriented Linux kernel function call tracer

Language: C - Size: 17.1 MB - Last synced: 23 days ago - Pushed: 28 days ago - Stars: 372 - Forks: 16

dropbox/goebpf

Library to work with eBPF programs from Go

Language: Go - Size: 1.72 MB - Last synced: 21 days ago - Pushed: about 2 months ago - Stars: 1,110 - Forks: 85

Orange-OpenSource/oko 📦

Extend Open vSwitch with BPF programs at runtime

Language: C - Size: 48 MB - Last synced: 26 days ago - Pushed: over 4 years ago - Stars: 31 - Forks: 10

gamemann/XDP-Forwarding

Layer 3/4 packet forwarding software that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. Uses source port mapping similar to IPTables and NFTables.

Language: C - Size: 104 KB - Last synced: 4 days ago - Pushed: over 1 year ago - Stars: 146 - Forks: 21

Orange-OpenSource/bmc-cache

In-kernel cache based on eBPF.

Language: C - Size: 436 KB - Last synced: 26 days ago - Pushed: over 2 years ago - Stars: 424 - Forks: 38

ns1/xdp-workshop

Velocity SJC 2019 - DDoS mitigation made easy with XDP and eBPF

Language: C - Size: 355 KB - Last synced: 21 days ago - Pushed: almost 5 years ago - Stars: 106 - Forks: 28

boratanrikulu/durdur

eBPF-powered L3/L4 packet dropper.

Language: Go - Size: 532 KB - Last synced: 3 days ago - Pushed: over 1 year ago - Stars: 72 - Forks: 0

mas-bandwidth/xdp

XDP example programs

Language: C - Size: 55.7 KB - Last synced: 30 days ago - Pushed: about 1 month ago - Stars: 9 - Forks: 0

gamemann/XDP-Stats

XDP programs that increment stat counters for packets/bytes.

Language: C - Size: 37.1 KB - Last synced: 4 days ago - Pushed: over 1 year ago - Stars: 15 - Forks: 3

cloudflare/rakelimit

A fair-share ratelimiter implemented in BPF

Language: C - Size: 11.9 MB - Last synced: 21 days ago - Pushed: about 1 year ago - Stars: 177 - Forks: 11

elastic/bpfcov

Source-code based coverage for eBPF programs actually running in the Linux kernel

Language: C - Size: 1.38 MB - Last synced: 22 days ago - Pushed: about 2 years ago - Stars: 123 - Forks: 9

genuinetools/bpfd

Framework for running BPF programs with rules on Linux as a daemon. Container aware.

Language: Go - Size: 3.57 MB - Last synced: about 13 hours ago - Pushed: almost 3 years ago - Stars: 470 - Forks: 39

hyperledger/solang

Solidity Compiler for Solana and Polkadot

Language: Rust - Size: 17.4 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 1,182 - Forks: 189

geyslan/kubearmor-libbpf Fork of kubearmor/libbpf

KubeArmor eBPF Go library based on Linux libbpf API

Language: Go - Size: 105 KB - Last synced: about 1 month ago - Pushed: over 2 years ago - Stars: 0 - Forks: 0

Dantali0n/OpenCSD

OpenCSD: eBPF Computational Storage Device (CSD) for Zoned Namespace (ZNS) SSDs in QEMU

Language: C++ - Size: 21.6 MB - Last synced: 2 days ago - Pushed: 6 months ago - Stars: 48 - Forks: 14

polycube-network/polycube

eBPF/XDP-based software framework for fast network services running in the Linux kernel.

Language: C++ - Size: 20.3 MB - Last synced: 28 days ago - Pushed: about 1 year ago - Stars: 483 - Forks: 100

aliyun/surftrace

surftrace is a tool that allows you to surf the linux kernel

Language: Python - Size: 12 MB - Last synced: 21 days ago - Pushed: 9 months ago - Stars: 350 - Forks: 60

kakkoyun/py-perf

A Proof-of-concept, low-overhead, sampling CPU profiler for Python implemented using eBPF.

Language: Rust - Size: 762 KB - Last synced: 4 days ago - Pushed: 7 months ago - Stars: 12 - Forks: 1

peter-mcconnell/dilih

simple ebpf chaos engineering tool meant to demonstrate how easy building an eBPF project can be

Language: Go - Size: 155 KB - Last synced: 20 days ago - Pushed: 12 months ago - Stars: 8 - Forks: 0

Asphaltt/iptables-bpf

An example of iptables-bpf with Go+eBPF

Language: C - Size: 623 KB - Last synced: 18 days ago - Pushed: over 2 years ago - Stars: 14 - Forks: 1

ia/connect

tiny cross-platform socket API library

Language: C - Size: 342 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 49 - Forks: 10

RENCI-NRIG/chaos-jungle

Chaos Jungle - collection of mechanisms for programmatically disrupting network traffic, storage and other elements of CI.

Language: Python - Size: 50.1 MB - Last synced: about 1 month ago - Pushed: about 4 years ago - Stars: 2 - Forks: 1

the-tcpdump-group/tcpslice

tcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.

Language: C - Size: 771 KB - Last synced: 26 days ago - Pushed: 26 days ago - Stars: 63 - Forks: 22

tamalsaha/bpf-notes

Size: 10.2 MB - Last synced: 6 days ago - Pushed: over 5 years ago - Stars: 13 - Forks: 5

leodido/demo-cloud-native-ebpf-day

Various eBPF programs for tracing network connections

Language: C - Size: 74.2 KB - Last synced: 4 days ago - Pushed: over 2 years ago - Stars: 27 - Forks: 7

xdp-project/xdp-tutorial

XDP tutorial

Language: C - Size: 640 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 2,188 - Forks: 545

oreza/bouncer

SPA Agent and Controller

Size: 4.88 KB - Last synced: about 2 months ago - Pushed: over 2 years ago - Stars: 1 - Forks: 0

mikeroyal/eBPF-Guide

eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.

Language: Go - Size: 181 KB - Last synced: about 2 months ago - Pushed: 4 months ago - Stars: 428 - Forks: 37

landhb/DrawBridge

Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)

Language: C - Size: 1.07 MB - Last synced: 18 days ago - Pushed: 7 months ago - Stars: 107 - Forks: 23

DavadDi/bpf_demo

Language: C - Size: 9.41 MB - Last synced: 18 days ago - Pushed: almost 2 years ago - Stars: 44 - Forks: 14

aya-rs/book

The Aya Book is an introductory book about using the Rust Programming Language and Aya library to build extended Berkley Packet Filter (eBPF) programs.

Language: HTML - Size: 1.75 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 56 - Forks: 44

theobori/tinyfilter

🐝 XDP packet filtering from layer 2 to 4

Language: C - Size: 47.9 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 1 - Forks: 0

AirVantage/sbulb

UDP load balancer prototype using bcc (XDP/Bpf)

Language: Python - Size: 111 KB - Last synced: 21 days ago - Pushed: over 3 years ago - Stars: 36 - Forks: 9

Netronome/libkefir

Convert network filtering rules from various formats into BPF programs

Language: C - Size: 296 KB - Last synced: about 2 months ago - Pushed: about 4 years ago - Stars: 61 - Forks: 9

hemslo/docker-bpf

Run ebpf programs in docker (e.g., bpftrace)

Language: Shell - Size: 9.77 KB - Last synced: 2 months ago - Pushed: over 1 year ago - Stars: 7 - Forks: 0

lac-dcc/honey-potion

Writing eBPF programs with Elixir!

Language: C - Size: 3.23 MB - Last synced: 2 months ago - Pushed: 2 months ago - Stars: 229 - Forks: 7

eunomia-bpf/bpf-developer-tutorial

eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

Language: C - Size: 21.1 MB - Last synced: 2 months ago - Pushed: 2 months ago - Stars: 1,774 - Forks: 253

gamemann/IPIPDirect-TC

Sends outgoing IPIP packets back to the client directly instead of back through the IPIP tunnel/forwarding server. Uses TC egress filter for fast packet processing.

Language: C - Size: 277 KB - Last synced: 4 days ago - Pushed: about 4 years ago - Stars: 14 - Forks: 1

shramos/pcap-splitter

Pcap-splitter allows you to split a pcap file into subsets of pcap files based on sessions, flows, ip addresses, number of bytes, number of network packets...

Language: Python - Size: 8.79 KB - Last synced: 2 months ago - Pushed: almost 5 years ago - Stars: 61 - Forks: 10

strang1ato/nhi

:tv: Automatically capture all potentially useful information about each executed command (as well as its output) and get powerful querying mechanism

Language: Go - Size: 3.93 MB - Last synced: 2 months ago - Pushed: 8 months ago - Stars: 287 - Forks: 11

x1b6e6/a4keyboard

Tool for controlling color of A4Tech Bloody keyboard

Language: C++ - Size: 31.3 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0