odigos-io/odigos

Distributed tracing without code changes. 🚀 Instantly monitor any application using OpenTelemetry and eBPF

Language: Go - Size: 77.7 MB - Last synced: about 3 hours ago - Pushed: about 3 hours ago - Stars: 3,031 - Forks: 184

pouriyajamshidi/flat

Measure UDP and TCP connection latency for IPv4 and IPv6 using eBPF and Go

Language: C - Size: 3.54 MB - Last synced: 30 minutes ago - Pushed: about 2 hours ago - Stars: 16 - Forks: 3

mozillazg/ptcpdump

Process-aware, eBPF-based tcpdump

Language: C - Size: 7.33 MB - Last synced: about 1 hour ago - Pushed: about 2 hours ago - Stars: 1 - Forks: 0

odigos-io/opentelemetry-go-instrumentation

OpenTelemetry auto-instrumentation for Go applications

Language: C - Size: 974 KB - Last synced: about 3 hours ago - Pushed: 9 months ago - Stars: 282 - Forks: 43

s5uishida/open5gs_5gc_ueransim_eupf_sample_config

Open5GS 5GC & UERANSIM UE / RAN Sample Configuration - eUPF(eBPF/XDP UPF)

Size: 297 KB - Last synced: about 8 hours ago - Pushed: about 9 hours ago - Stars: 3 - Forks: 0

s5uishida/open5gs_epc_srsran_eupf_sample_config

Open5GS EPC & srsRAN 4G with ZeroMQ UE / RAN Sample Configuration - eUPF(eBPF/XDP UPF(PGW-U))

Size: 328 KB - Last synced: about 8 hours ago - Pushed: about 9 hours ago - Stars: 5 - Forks: 0

cilium/cilium-cli

CLI to install, manage & troubleshoot Kubernetes clusters running Cilium

Language: Go - Size: 72.3 MB - Last synced: about 4 hours ago - Pushed: about 14 hours ago - Stars: 369 - Forks: 188

seladb/PcapPlusPlus

PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.

Language: C++ - Size: 88 MB - Last synced: about 12 hours ago - Pushed: about 14 hours ago - Stars: 2,581 - Forks: 631

aquasecurity/libbpfgo

eBPF library for Go. Powered by libbpf.

Language: Go - Size: 863 KB - Last synced: 4 days ago - Pushed: 25 days ago - Stars: 670 - Forks: 92

apache/skywalking-rover

Monitor and profiler powered by eBPF to monitor network traffic, and diagnose CPU and network performance.

Language: Go - Size: 1.04 MB - Last synced: about 15 hours ago - Pushed: 11 days ago - Stars: 179 - Forks: 34

rprinz08/hBPF

hBPF = eBPF in hardware

Language: Python - Size: 8.39 MB - Last synced: about 15 hours ago - Pushed: over 1 year ago - Stars: 386 - Forks: 22

groundcover-com/caretta

Instant K8s service dependency map, right to your Grafana.

Language: Go - Size: 6.48 MB - Last synced: about 15 hours ago - Pushed: about 2 months ago - Stars: 1,671 - Forks: 64

qmonnet/rbpf

Rust virtual machine and JIT compiler for eBPF programs

Language: Rust - Size: 751 KB - Last synced: about 15 hours ago - Pushed: 3 days ago - Stars: 827 - Forks: 201

cilium/hubble

Hubble - Network, Service & Security Observability for Kubernetes using eBPF

Language: Makefile - Size: 34.7 MB - Last synced: about 14 hours ago - Pushed: 1 day ago - Stars: 3,316 - Forks: 239

aquasecurity/tracee

Linux Runtime Security and Forensics using eBPF

Language: Go - Size: 130 MB - Last synced: about 15 hours ago - Pushed: 3 days ago - Stars: 3,263 - Forks: 387

vbpf/ebpf-verifier

eBPF verifier based on abstract interpretation

Language: C++ - Size: 4.57 MB - Last synced: about 22 hours ago - Pushed: 1 day ago - Stars: 344 - Forks: 39

libbpf/libbpf-sys

Rust bindings to libbpf from the Linux kernel

Language: Rust - Size: 172 KB - Last synced: about 22 hours ago - Pushed: about 23 hours ago - Stars: 171 - Forks: 40

rubrikinc/wachy

A UI for eBPF-based performance debugging

Language: Rust - Size: 1.76 MB - Last synced: about 15 hours ago - Pushed: over 1 year ago - Stars: 537 - Forks: 17

aya-rs/aya

Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.

Language: Rust - Size: 5.5 MB - Last synced: 39 minutes ago - Pushed: 1 day ago - Stars: 2,706 - Forks: 240

s5uishida/install_eupf

Install eUPF(eBPF/XDP UPF) on Host

Size: 124 KB - Last synced: 1 day ago - Pushed: 1 day ago - Stars: 3 - Forks: 2

OpenCloudOS/nettrace

nettrace is a eBPF-based tool to trace network packet and diagnose network problem.

Language: C - Size: 8.59 MB - Last synced: 1 day ago - Pushed: 1 day ago - Stars: 249 - Forks: 64

Gui774ume/ebpfkit

ebpfkit is a rootkit powered by eBPF

Language: C - Size: 7.63 MB - Last synced: about 15 hours ago - Pushed: about 1 year ago - Stars: 686 - Forks: 84

cilium/ebpf

ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.

Language: Go - Size: 43.8 MB - Last synced: about 15 hours ago - Pushed: 3 days ago - Stars: 5,773 - Forks: 640

iovisor/kubectl-trace

Schedule bpftrace programs on your kubernetes cluster using the kubectl

Language: Go - Size: 9.13 MB - Last synced: about 15 hours ago - Pushed: about 17 hours ago - Stars: 1,975 - Forks: 162

elastic/ebpf

Elastic's eBPF

Language: C - Size: 17.6 MB - Last synced: 1 day ago - Pushed: 2 days ago - Stars: 55 - Forks: 9

h3xduck/TripleCross

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

Language: C - Size: 86.4 MB - Last synced: about 15 hours ago - Pushed: 29 days ago - Stars: 1,710 - Forks: 211

libbpf/libbpf-rs

Minimal and opinionated eBPF tooling for the Rust ecosystem

Language: Rust - Size: 4.71 MB - Last synced: 2 days ago - Pushed: 2 days ago - Stars: 639 - Forks: 125

zoidyzoidzoid/awesome-ebpf

A curated list of awesome projects related to eBPF.

Size: 363 KB - Last synced: about 17 hours ago - Pushed: 27 days ago - Stars: 3,889 - Forks: 344

edgecomllc/eupf

5G User Plane Function (UPF) based on eBPF

Language: Go - Size: 5.97 MB - Last synced: 22 days ago - Pushed: 22 days ago - Stars: 84 - Forks: 8

davidcoles/vc5

A distributed Layer 2 Direct Server Return (L2DSR) Layer 4 load balancer (L4LB) for Linux using XDP/eBPF

Language: Go - Size: 1.8 MB - Last synced: 2 days ago - Pushed: 3 days ago - Stars: 75 - Forks: 6

digma-ai/digma

🧑‍💻🔭 Digma is a Continuous Feedback platform that makes observability relevant in dev. Digma empowers developers to own their code all the way to production, improves code quality and prevents critical issues before they escalate. Sign up today! https://digma.ai 💫

Language: Shell - Size: 4.82 MB - Last synced: 2 days ago - Pushed: 3 days ago - Stars: 355 - Forks: 11

vbpf/ebpf-samples

Sample ebpf programs to analyze

Language: C - Size: 2.34 MB - Last synced: about 15 hours ago - Pushed: 8 days ago - Stars: 80 - Forks: 12

astrid-project/lcp

In each local agent, the control plane is responsible for programmability, i.e., changing the behaviour of the data plane at run-time.

Language: Python - Size: 710 KB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 3 - Forks: 0

ebpf-io/ebpf.io-website

ebpf.io Website

Language: HTML - Size: 168 MB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 109 - Forks: 106

getanteon/alaz

Alaz: Advanced eBPF Agent for Kubernetes Observability – Effortlessly monitor K8s service interactions and performance metrics in your K8s environment. Gain in-depth insights with service maps, metrics, distributed tracing, and more, while staying alert to crucial system anomalies 🐝

Language: C - Size: 5.3 MB - Last synced: 2 days ago - Pushed: 3 days ago - Stars: 585 - Forks: 26

microsoft/retina

eBPF distributed networking observability tool for Kubernetes

Language: Go - Size: 53.4 MB - Last synced: 4 days ago - Pushed: 4 days ago - Stars: 2,429 - Forks: 156

s41m0n/opportunistic_monitoring

Fully Adaptive Network monitoring experiments for Paper.

Language: Jupyter Notebook - Size: 258 KB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 3 - Forks: 0

metrico/qryn

Lightweight, Polyglot, Snap-on Observability Stack. Drop-in Compatible with Loki, Prometheus, Tempo, Pyroscope, Opentelemetry and more! Vendor independent LGTM replacement and Splunk/Datadog/Elastic alternative! WASM powered ⭐️ Star to Support

Language: JavaScript - Size: 55.4 MB - Last synced: 4 days ago - Pushed: 10 days ago - Stars: 948 - Forks: 59

groundcover-com/cli

groundcover's official CLI tool. Level up your K8s observability game with eBPF.

Language: Go - Size: 600 KB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 28 - Forks: 2

cloudflare/ebpf_exporter

Prometheus exporter for custom eBPF metrics

Language: Go - Size: 10.2 MB - Last synced: 3 days ago - Pushed: 4 days ago - Stars: 2,032 - Forks: 218

kube-tarian/tarian

Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right threat elimination.

Language: Go - Size: 12 MB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 53 - Forks: 14

grantseltzer/weaver

Trace Go program execution with uprobes and eBPF

Language: Go - Size: 7.84 MB - Last synced: 2 days ago - Pushed: 9 months ago - Stars: 295 - Forks: 20

astrid-project/cb-manager

APIs to interact with the Context Broker's database. Through a REST Interface, it exposes data and events stored in the internal storage system in a structured way. It provides uniform access to the capabilities of monitoring agents.

Language: Python - Size: 25.4 MB - Last synced: 3 days ago - Pushed: 4 days ago - Stars: 1 - Forks: 1

redcanaryco/redcanary-ebpf-sensor

Red Canary's eBPF Sensor

Language: C - Size: 1.48 MB - Last synced: about 15 hours ago - Pushed: about 2 months ago - Stars: 89 - Forks: 14

isovalent/eBPF-Summit-2022-CTF

Capture The Flag Challenge for eBPF Summit 2022

Size: 38.1 KB - Last synced: 4 days ago - Pushed: over 1 year ago - Stars: 15 - Forks: 0

merbridge/merbridge

Use eBPF to speed up your Service Mesh like crossing an Einstein-Rosen Bridge.

Language: Go - Size: 668 KB - Last synced: 2 days ago - Pushed: 2 months ago - Stars: 725 - Forks: 93

simar7/ebpf-stuff

Just a playground of eBPF things.

Language: Go - Size: 1.53 MB - Last synced: 4 days ago - Pushed: over 4 years ago - Stars: 2 - Forks: 0

elastic/otel-profiling-agent

The production-scale datacenter profiler (C/C++, Go, Rust, Python, Java, NodeJS, PHP, Ruby, Perl, ...)

Language: Go - Size: 1.45 MB - Last synced: 4 days ago - Pushed: 17 days ago - Stars: 1,962 - Forks: 218

wqld/sinabro

Sinabro is a networking solution for Kubernetes that leverages eBPF to provide high-performance networking and security features

Language: Rust - Size: 242 KB - Last synced: 3 days ago - Pushed: 4 days ago - Stars: 6 - Forks: 0

mozillazg/hello-libbpfgo

Examples for libbpf, aquasecurity/libbpfgo and cilium/ebpf

Language: Go - Size: 894 KB - Last synced: 4 days ago - Pushed: 4 days ago - Stars: 89 - Forks: 20

radiantly/udpquiz

Find out what udp ports haven't been blocked by your network firewall

Language: C - Size: 14.6 KB - Last synced: 4 days ago - Pushed: 4 days ago - Stars: 9 - Forks: 0

kubearmor/KubeArmor

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

Language: Go - Size: 53.3 MB - Last synced: 3 days ago - Pushed: 4 days ago - Stars: 1,279 - Forks: 309

loxilb-io/loxilb-ebpf

loxilb ebpf sub-module

Language: C - Size: 2.89 MB - Last synced: 5 days ago - Pushed: 5 days ago - Stars: 16 - Forks: 8

aya-rs/awesome-aya

A curated list of awesome eBPF 🐝 projects using aya-rs and Rust 🦀

Size: 33.2 KB - Last synced: 2 days ago - Pushed: 6 days ago - Stars: 78 - Forks: 10

aibor/exceed2go

ICMPv6 time exceeded packet generator

Language: C - Size: 1.14 MB - Last synced: 5 days ago - Pushed: 5 days ago - Stars: 4 - Forks: 0

yandex-cloud/skbtrace

Helper tool for generating and running BPFTrace scripts which trace and measure timings related to Linux Networking Stack, specifically SocKet Buffer contents

Language: Go - Size: 111 KB - Last synced: 5 days ago - Pushed: 5 days ago - Stars: 79 - Forks: 3

xdp-project/xdp-project

XDP project collaboration through a git-repo

Language: CSS - Size: 39.3 MB - Last synced: about 15 hours ago - Pushed: 16 days ago - Stars: 250 - Forks: 35

florianl/go-tc

traffic control in pure go - it allows to read and alter queues, filters and classes

Language: Go - Size: 551 KB - Last synced: 4 days ago - Pushed: 15 days ago - Stars: 406 - Forks: 44

epic-gateway/true-ingress

eBPF-powered tunnels between the EPIC Gateway and client nodes.

Language: Shell - Size: 1.92 MB - Last synced: 5 days ago - Pushed: 5 months ago - Stars: 0 - Forks: 0

alibaba/kubeskoop

Network monitoring & diagnosis suite for Kubernetes

Language: Go - Size: 30.9 MB - Last synced: 3 days ago - Pushed: 3 days ago - Stars: 485 - Forks: 57

KindlingProject/kindling

eBPF-based Cloud Native Monitoring Tool

Language: Go - Size: 32.7 MB - Last synced: 2 days ago - Pushed: 10 days ago - Stars: 572 - Forks: 99

udzura/rbbcc

BCC port for MRI - this is unofficial bonsai project.

Language: Ruby - Size: 2.26 MB - Last synced: 4 days ago - Pushed: 3 months ago - Stars: 47 - Forks: 1

foniod/redbpf 📦

Rust library for building and running BPF/eBPF modules

Language: Rust - Size: 1.08 MB - Last synced: about 15 hours ago - Pushed: 10 months ago - Stars: 1,707 - Forks: 134

netobserv/netobserv-ebpf-agent

Network Observability eBPF Agent

Language: C - Size: 20.4 MB - Last synced: 13 days ago - Pushed: 13 days ago - Stars: 100 - Forks: 29

kmesh-net/kmesh

High Performance ServiceMesh Data Plane Based on Programmable Kernel

Language: C - Size: 39.4 MB - Last synced: 7 days ago - Pushed: 7 days ago - Stars: 305 - Forks: 38

devops-360-online/cilium-k8s-cni-guide

A comprehensive guide to deploying and managing Cilium as a CNI provider in Kubernetes, covering eBPF, security, observability, cluster mesh, and routing modes

Language: Shell - Size: 87.9 KB - Last synced: 6 days ago - Pushed: 6 days ago - Stars: 1 - Forks: 0

NIKSS-vSwitch/nikss

Native In-Kernel P4-programmable Software Switch for Software-Defined Networking (previously PSA-eBPF)

Language: C - Size: 531 KB - Last synced: 6 days ago - Pushed: 6 days ago - Stars: 44 - Forks: 3

daeuniverse/dae

eBPF-based Linux high-performance transparent proxy solution.

Language: Go - Size: 3.61 MB - Last synced: 6 days ago - Pushed: 6 days ago - Stars: 2,391 - Forks: 150

linuxkerneltravel/lmp

LMP provides an eBPF Supermarket for developers, including eBPF tools, open-source projects based on eBPF, eBPF learning materials, Linux kernel learning materials, and more.

Language: C - Size: 220 MB - Last synced: 6 days ago - Pushed: 7 days ago - Stars: 531 - Forks: 159

alegrey91/harpoon

🔍 Trace syscalls of user-space defined functions, using eBPF

Language: C - Size: 852 KB - Last synced: 13 days ago - Pushed: 13 days ago - Stars: 45 - Forks: 1

davidcoles/xvs

XDP Virtual Server

Language: Go - Size: 393 KB - Last synced: 7 days ago - Pushed: 7 days ago - Stars: 3 - Forks: 0

kubernetes-sigs/blixt

Layer 4 Kubernetes load-balancer

Language: Rust - Size: 796 KB - Last synced: 2 days ago - Pushed: 5 days ago - Stars: 268 - Forks: 42

avilum/secimport

eBPF Python runtime sandbox with seccomp (Blocks RCE).

Language: Python - Size: 315 KB - Last synced: 3 days ago - Pushed: about 2 months ago - Stars: 157 - Forks: 12

EHfive/einat-ebpf

An eBPF-based Endpoint-Independent(Full Cone) NAT for Linux

Language: Rust - Size: 1.53 MB - Last synced: 7 days ago - Pushed: 7 days ago - Stars: 101 - Forks: 3

eunomia-bpf/eunomia-bpf

Build, Distribute and Run CO-RE eBPF programs easier with JSON and Webassembly OCI images

Language: Rust - Size: 15.6 MB - Last synced: about 15 hours ago - Pushed: about 1 month ago - Stars: 553 - Forks: 57

tw4452852/zbpf

Writing eBPF in Zig

Language: Zig - Size: 3.14 MB - Last synced: about 15 hours ago - Pushed: 7 days ago - Stars: 70 - Forks: 4

ldorau/strace.ebpf

Tool tracing syscalls in a fast way using eBPF linux kernel feature

Size: 836 KB - Last synced: 8 days ago - Pushed: almost 7 years ago - Stars: 3 - Forks: 2

eunomia-bpf/awesome-ebpf-zh

与 eBPF 相关的精选项目的中文清单

Size: 197 KB - Last synced: 2 days ago - Pushed: about 1 year ago - Stars: 57 - Forks: 8

linux-lock/bpflock

bpflock - eBPF driven security for locking and auditing Linux machines

Language: C - Size: 4.97 MB - Last synced: about 15 hours ago - Pushed: about 2 years ago - Stars: 134 - Forks: 13

lockc-project/lockc

Making containers more secure with eBPF and Linux Security Modules (LSM)

Language: Rust - Size: 2.43 MB - Last synced: 3 days ago - Pushed: 12 months ago - Stars: 205 - Forks: 20

navarrothiago/upf-bpf

An In-Kernel Solution Based on BPF/XDP for 5G UPF

Language: C++ - Size: 1.51 MB - Last synced: about 15 hours ago - Pushed: 2 months ago - Stars: 187 - Forks: 28

OpenCloudOS/perf-prof

Kernel profiler based on perf_event and ebpf

Language: C - Size: 6.07 MB - Last synced: 9 days ago - Pushed: 10 days ago - Stars: 52 - Forks: 11

mfontanini/sockwho

Inspect socketaddrs using eBPF tracepoints

Language: Rust - Size: 21.5 KB - Last synced: 5 days ago - Pushed: 12 months ago - Stars: 2 - Forks: 0

eunomia-bpf/GPTtrace

Generate eBPF programs and tracing with ChatGPT and natural language

Language: Python - Size: 7.97 MB - Last synced: 3 days ago - Pushed: 4 months ago - Stars: 179 - Forks: 19

eunomia-bpf/bpftime

Userspace eBPF runtime for fast Uprobe & Syscall hook & Extensions with LLVM JIT

Language: C++ - Size: 11.5 MB - Last synced: 10 days ago - Pushed: 10 days ago - Stars: 621 - Forks: 57

electrocucaracha/k8s-NetworkingDeepDive-demo

Didactic project for K8s Networking analysis

Language: Shell - Size: 199 KB - Last synced: 13 days ago - Pushed: 13 days ago - Stars: 8 - Forks: 0

techiescamp/devops-tools

Curated List of Best DevOps Tools

Size: 115 KB - Last synced: 10 days ago - Pushed: 10 days ago - Stars: 481 - Forks: 175

libbpf/bpftool

Automated upstream mirror for bpftool stand-alone build.

Language: C - Size: 1.11 MB - Last synced: 10 days ago - Pushed: 10 days ago - Stars: 302 - Forks: 61

eunomia-bpf/wasm-bpf

WebAssembly library, toolchain and runtime for eBPF programs

Language: Rust - Size: 9.66 MB - Last synced: 7 days ago - Pushed: 5 months ago - Stars: 327 - Forks: 26

aquasecurity/btfhub

BTFhub, in collaboration with the BTFhub Archive repository, supplies BTF files for all published kernels that lack native support for embedded BTF. This joint effort ensures that even kernels without built-in BTF support can effectively leverage the benefits of eBPF programs, promoting compatibility across various kernel versions.

Language: Go - Size: 12.4 MB - Last synced: 22 days ago - Pushed: 4 months ago - Stars: 326 - Forks: 39

mehrdadrad/tcpdog

eBPF based TCP observability.

Language: Go - Size: 2.31 MB - Last synced: about 23 hours ago - Pushed: almost 3 years ago - Stars: 249 - Forks: 22

sharyash81/kernel-tracing

Language: Shell - Size: 1.02 MB - Last synced: 11 days ago - Pushed: 11 days ago - Stars: 2 - Forks: 0

gamemann/XDP-Firewall

A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is supported with this firewall! I hope this helps network engineers/programmers interested in utilizing XDP!

Language: C - Size: 1.11 MB - Last synced: 4 days ago - Pushed: 13 days ago - Stars: 458 - Forks: 87

alibaba/ilogtail

Fast and Lightweight Observability Data Collector

Language: C++ - Size: 29.8 MB - Last synced: 13 days ago - Pushed: 13 days ago - Stars: 1,522 - Forks: 341

chriskaliX/Hades

Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)

Language: C - Size: 15.2 MB - Last synced: 3 days ago - Pushed: about 2 months ago - Stars: 276 - Forks: 48

skydive-project/skydive

An open source real-time network topology and protocols analyzer

Language: Go - Size: 73.1 MB - Last synced: 11 days ago - Pushed: 27 days ago - Stars: 2,588 - Forks: 395

keisku/gmon

An eBPF tool monitoring a goroutine

Language: Go - Size: 1.04 MB - Last synced: 22 days ago - Pushed: 22 days ago - Stars: 10 - Forks: 0

kunai-project/kunai

Threat-hunting tool for Linux

Language: Rust - Size: 729 KB - Last synced: 11 days ago - Pushed: 16 days ago - Stars: 266 - Forks: 16

ebpfdev/explorer

eBPF explorer is Web UI that lets you see all the maps and programs in eBPF subsystem

Language: Dockerfile - Size: 5.24 MB - Last synced: about 15 hours ago - Pushed: 11 months ago - Stars: 77 - Forks: 0

danny-yamamoto/lsm

LSM stands for Linux Security Modules which is a framework which allows developers to write security systems on top of the Linux kernel.

Language: Rust - Size: 5.86 KB - Last synced: 12 days ago - Pushed: 4 months ago - Stars: 0 - Forks: 0