{"id":20294581,"url":"https://github.com/microsoft/SysinternalsEBPF","last_synced_at":"2025-05-07T19:32:06.836Z","repository":{"id":38203014,"uuid":"413410619","full_name":"Sysinternals/SysinternalsEBPF","owner":"Sysinternals","description":"The Linux port of the Sysinternals Sysmon tool.","archived":false,"fork":false,"pushed_at":"2024-11-07T20:12:23.000Z","size":347,"stargazers_count":239,"open_issues_count":11,"forks_count":31,"subscribers_count":18,"default_branch":"main","last_synced_at":"2024-11-07T21:21:21.282Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"lgpl-2.1","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Sysinternals.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-10-04T12:24:38.000Z","updated_at":"2024-11-07T20:12:27.000Z","dependencies_parsed_at":"2023-12-06T23:30:45.375Z","dependency_job_id":"2b745e2e-0739-465d-8fb8-5c1d41d81853","html_url":"https://github.com/Sysinternals/SysinternalsEBPF","commit_stats":null,"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Sysinternals%2FSysinternalsEBPF","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Sysinternals%2FSysinternalsEBPF/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Sysinternals%2FSysinternalsEBPF/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Sysinternals%2FSysinternalsEBPF/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Sysinternals","download_url":"https://codeload.github.com/Sysinternals/SysinternalsEBPF/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":224644854,"owners_count":17345987,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-14T15:29:48.528Z","updated_at":"2025-05-07T19:32:00.780Z","avatar_url":"https://github.com/Sysinternals.png","language":"C","funding_links":[],"categories":[],"sub_categories":[],"readme":"# SysinternalsEBPF [![Build Status](https://dev.azure.com/sysinternals/Tools/_apis/build/status/Sysinternals.SysinternalsEBPF?repoName=Sysinternals%2FSysinternalsEBPF\u0026branchName=main)](https://dev.azure.com/sysinternals/Tools/_build/latest?definitionId=337\u0026repoName=Sysinternals%2FSysinternalsEBPF\u0026branchName=main)\n\n## Build\nPlease see build instructions [here](BUILD.md).\n\n## Autodiscovery of Offsets\nSysinternalsEBPF attempts to automatically discover the offsets of some members\nof some kernel structs. If this fails, please provide details of the kernel\nversion (and config if possible) plus the error message to the GitHub issues page.\n\nYou can then generate a configuration file to override the autodiscovery by\nbuilding the getOffsets module in the /opt/sysinternals/getOffsets directory.\nSee the README.md in that directory for more information.\n\nIf you define EBPF_CO_RE in your own eBPF programs that use SysinternalsEBPF, the\nlibrary will use the CORE libbpf APIs.\n\n## Manual Page\nA man page for SysinternalsEBPF can be found in the package directory, and is\ninstalled by both deb and rpm packages.\n\nUse 'find' on the package directory to locate it manually.\n\n## License\nSysinternalsEBPF is licensed under LGPL2.1.\nSysinternalsEBPF includes libbpf, which is licensed under LGPL2.1.\nLibbpf can be located at https://github.com/libbpf/libbpf\nThe SysinternalsEBPF library of eBPF code is licensed under GPL2.\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmicrosoft%2FSysinternalsEBPF","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmicrosoft%2FSysinternalsEBPF","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmicrosoft%2FSysinternalsEBPF/lists"}