Projects in Awesome Lists tagged with bpf
A curated list of projects in awesome lists tagged with bpf .
https://github.com/cilium/cilium
eBPF-based Networking, Security, and Observability
bpf cncf cni containers ebpf k8s kernel kubernetes kubernetes-networking loadbalancing monitoring networking observability security troubleshooting xdp
Last synced: 15 Apr 2026
https://github.com/bpftrace/bpftrace
High-level tracing language for Linux
bcc bpf ebpf kprobes tracepoints tracing uprobes usdt
Last synced: 16 May 2025
https://github.com/capstone-engine/capstone
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.
arm arm64 bpf disassembler ethereum framework m0s65xx m680x m68k mips powerpc reverse-engineering riscv security sparc systemz tms320c64x webassembly x86 x86-64
Last synced: 15 Jan 2026
https://github.com/aquynh/capstone
Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.
arm arm64 bpf disassembler ethereum framework m0s65xx m680x m68k mips powerpc reverse-engineering riscv security sparc systemz tms320c64x webassembly x86 x86-64
Last synced: 13 Mar 2025
https://github.com/parca-dev/parca
Continuous profiling for analysis of CPU and memory usage, down to the line number and throughout time. Saving infrastructure cost, improving performance, and increasing reliability.
bpf c containers continuous-profiling cpp ebpf ebpf-programs golang javascript kubernetes observability performance php pprof profiles profiling prometheus python ruby rust
Last synced: 14 May 2025
https://github.com/hengyoush/kyanos
Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient.
bpf capture command-line command-line-tool ebpf network sniffer tcp tcpdump tcpdump-like
Last synced: 13 May 2025
https://github.com/cilium/tetragon
eBPF-based Security Observability and Runtime Enforcement
bpf ebpf kernel kubernetes security
Last synced: 12 May 2025
https://github.com/aquasecurity/tracee
Linux Runtime Security and Forensics using eBPF
bpf docker ebpf golang kubernetes linux runtime-security security
Last synced: 14 May 2025
https://github.com/aya-rs/aya
Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.
bpf ebpf observability rust security
Last synced: 14 May 2025
https://github.com/aquasecurity/Tracee
Linux Runtime Security and Forensics using eBPF
bpf docker ebpf golang kubernetes linux runtime-security security
Last synced: 30 Apr 2025
https://github.com/the-tcpdump-group/tcpdump
the TCPdump network dissector
auditing berkeley-packet-filter bpf bsd-packet-filter libpcap packet-capture pcap pcapng security sniffer tcpdump troubleshooting
Last synced: 14 May 2025
https://github.com/the-tcpdump-group/libpcap
the LIBpcap interface to various kernel packet capture mechanism
berkeley-packet-filter bpf bsd-packet-filter libpcap packet-capture pcap pcapng sniffer
Last synced: 13 May 2025
https://github.com/inspektor-gadget/inspektor-gadget
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF
bpf bpf-programs cncf-project ebpf ebpf-programs inspektor-gadget kinvolk kubernetes prometheus-exporter prometheus-metrics
Last synced: 12 Mar 2026
https://github.com/libbpf/libbpf
Automated upstream mirror for libbpf stand-alone build.
Last synced: 13 May 2025
https://github.com/cloudflare/ebpf_exporter
Prometheus exporter for custom eBPF metrics
bpf ebpf libbpf linux-kernel performance prometheus prometheus-exporter tracing
Last synced: 23 Apr 2025
https://github.com/iovisor/kubectl-trace
Schedule bpftrace programs on your kubernetes cluster using the kubectl
bpf bpftrace ebpf ebpf-programs kubectl kubectl-plugin kubectl-plugins kubectl-trace kubernetes-cluster trace tracepoints
Last synced: 14 May 2025
https://github.com/kubearmor/kubearmor
Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).
bpf containers ebpf hacktoberfest kernel kubernetes lsm policy sandbox security system tool
Last synced: 02 Apr 2026
https://github.com/oracle/bpftune
bpftune uses BPF to auto-tune Linux systems
Last synced: 12 Dec 2025
https://github.com/kubearmor/KubeArmor
Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).
bpf containers ebpf hacktoberfest kernel kubernetes lsm policy sandbox security system tool
Last synced: 04 Apr 2025
https://github.com/hyperledger-solang/solang
Solidity Compiler for Solana, Polkadot and Stellar
blockchain bpf compiler polkadot rust smart-contracts solana solidity soroban stellar substrate wasm
Last synced: 14 May 2025
https://github.com/dropbox/goebpf
Library to work with eBPF programs from Go
bpf cats cats-effect ebpf go golang golang-library perfevents xdp xdpdump
Last synced: 15 May 2025
https://github.com/qmonnet/rbpf
Rust virtual machine and JIT compiler for eBPF programs
assembler bpf ebpf ebpf-programs interpreter jit-compiler packet-filtering rust
Last synced: 13 May 2025
https://github.com/libbpf/libbpf-rs
Minimal and opinionated eBPF tooling for the Rust ecosystem
Last synced: 13 May 2025
https://github.com/getanteon/alaz
Alaz: Advanced eBPF Agent for Kubernetes Observability – Effortlessly monitor K8s service interactions and performance metrics in your K8s environment. Gain in-depth insights with service maps, metrics, and more, while staying alert to crucial system anomalies 🐝
bpf ddosify distributed-tracing ebpf ebpf-programs kubernetes logs metrics monitoring observability prometheus tracing
Last synced: 07 Apr 2025
https://github.com/gamemann/xdp-firewall
A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is supported with this firewall! I hope this helps network engineers/programmers interested in utilizing XDP!
anti-ddos bpf ddos ddos-attacks ddos-mitigation ddos-protection denial-of-service distributed-denial-of-service dos dos-attack dos-protection ebpf fast firewall fw kernel linux network security xdp
Last synced: 15 May 2025
https://github.com/gamemann/XDP-Firewall
A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is supported with this firewall! I hope this helps network engineers/programmers interested in utilizing XDP!
anti-ddos bpf ddos ddos-attacks ddos-mitigation ddos-protection denial-of-service distributed-denial-of-service dos dos-attack dos-protection ebpf fast firewall fw kernel linux network security xdp
Last synced: 02 Apr 2025
https://github.com/mikeroyal/ebpf-guide
eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.
bpf distributed-tracing ebpf ebpf-programs falco infrastructure-monitoring kubernetes-cluster kubernetes-security log-analysis network-analysis observability open-telemetry packet-sniffer performance-monitoring real-user-monitoring sandbox tracing traffic-monitoring vulnerability-detection xdp
Last synced: 05 Apr 2025
https://github.com/mikeroyal/eBPF-Guide
eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.
bpf distributed-tracing ebpf ebpf-programs falco infrastructure-monitoring kubernetes-cluster kubernetes-security log-analysis network-analysis observability open-telemetry packet-sniffer performance-monitoring real-user-monitoring sandbox tracing traffic-monitoring vulnerability-detection xdp
Last synced: 06 Apr 2025
https://github.com/parca-dev/parca-agent
eBPF based always-on profiler auto-discovering targets in Kubernetes and systemd, zero code changes or restarts needed!
bpf c continuous-profiling cpp ebpf ebpf-programs go golang hacktoberfest kubernetes libbpf linux observability performance pprof profiling python ruby rust systemd
Last synced: 15 May 2025
https://github.com/polycube-network/polycube
eBPF/XDP-based software framework for fast network services running in the Linux kernel.
bpf bridge cube data-plane ebpf firewall iptables kubernetes linux-kernel nat polycube-networks polycube-services
Last synced: 23 Oct 2025
https://github.com/libbpf/bpftool
Automated upstream mirror for bpftool stand-alone build.
Last synced: 15 May 2025
https://github.com/xdp-project/bpf-examples
Making eBPF programming easier via build env and examples
Last synced: 15 May 2025
https://github.com/genuinetools/bpfd
Framework for running BPF programs with rules on Linux as a daemon. Container aware.
bpf cli containers docker ebpf kernel linux security tracing
Last synced: 16 May 2025
https://github.com/yutarohayakawa/ipftrace2
A packet oriented Linux kernel function call tracer
bpf ebpf linux-kernel network tracing
Last synced: 05 Apr 2025
https://github.com/YutaroHayakawa/ipftrace2
A packet oriented Linux kernel function call tracer
bpf ebpf linux-kernel network tracing
Last synced: 11 Jul 2025
https://github.com/bytedance/vArmor
vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.
apparmor apparmor-profiles bpf containers kubernetes lsm policy sandbox seccomp security
Last synced: 30 Apr 2025
https://github.com/bytedance/varmor
vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.
apparmor apparmor-profiles bpf containers kubernetes lsm policy sandbox seccomp security
Last synced: 16 May 2025
https://github.com/lac-dcc/honey-potion
Writing eBPF programs with Elixir!
bpf bpftool c clang compiler compiler-construction compiler-design compilers ebpf elixir elixir-lang elixir-library framework libbpf linux linux-kernel metaprogramming network-monitoring optimizer tracing
Last synced: 16 Jan 2026
https://github.com/seccomp/libseccomp-golang
The libseccomp golang bindings repository
Last synced: 14 May 2025
https://github.com/mehrdadrad/tcpdog
eBPF based TCP observability.
bpf ebpf linux monitoring observability socket tcp tool
Last synced: 15 Jun 2025
https://github.com/furkanonder/beetrace
Trace your python process line by line with eBPF!
Last synced: 06 Apr 2025
https://github.com/navarrothiago/upf-bpf
An In-Kernel Solution Based on eBPF / XDP for 5G UPF
3gpp 5g 5g-core 5g-core-network 5gc bpf cmake co-re ebpf flex trex-engine trex-traffic-generator upf
Last synced: 25 Oct 2025
https://github.com/kinvolk/traceloop
Now moved into `github.com/inspektor-gadget/inspektor-gadget/pkg/gadget-collection/gadgets/traceloop`. Tracing system calls in cgroups using BPF and overwritable ring buffers
bpf cgroup inspektor-gadget kinvolk
Last synced: 21 Apr 2025
https://github.com/cloudflare/rakelimit
A fair-share ratelimiter implemented in BPF
bpf dos-attack linux ratelimiter
Last synced: 21 Mar 2025
https://github.com/msantos/epcap
Erlang packet capture interface using pcap
Last synced: 05 Apr 2025
https://github.com/gamemann/xdp-proxy
A stateless, high-performance NAT-like proxy that attaches to the XDP hook in the Linux kernel using (e)BPF for fast packet processing. This proxy forwards packets based on configurable rules and performs source-port mapping, similar to IPTables and NFTables.
bpf drv ebpf forwarding icmp kernel l3 layer3 layer4 linux linux-kernel mapping nat processing proxy routing sourceport tcp udp xdp
Last synced: 04 Apr 2025
https://github.com/gamemann/XDP-Proxy
A stateless, high-performance NAT-like proxy that attaches to the XDP hook in the Linux kernel using (e)BPF for fast packet processing. This proxy forwards packets based on configurable rules and performs source-port mapping, similar to IPTables and NFTables.
bpf drv ebpf forwarding icmp kernel l3 layer3 layer4 linux linux-kernel mapping nat processing proxy routing sourceport tcp udp xdp
Last synced: 16 Mar 2025
https://github.com/furkanonder/dnstrace
Monitor DNS queries by host processes using eBPF!
bcc bpf dns ebpf ebpf-programs
Last synced: 12 Apr 2025
https://github.com/furkanonder/DnsTrace
Monitor DNS queries by host processes using eBPF!
bcc bpf dns ebpf ebpf-programs
Last synced: 21 Oct 2025
https://github.com/linux-lock/bpflock
bpflock - eBPF driven security for locking and auditing Linux machines
bpf containers ebpf iot iot-security kernel kubernetes lsm security
Last synced: 12 Apr 2025
https://github.com/jnidzwetzki/pg-lock-tracer
A eBPF based lock tracer for the PostgreSQL database
bpf dbms deadlock-detection locking postgres postgresql tracing
Last synced: 05 Feb 2026
https://github.com/bpfsnoop/bpfsnoop
Modernized kernel functions, kernel tracepoints and bpf progs tracing tool for the bpf era.
bpf bpflbr bpfsnoop ebpf fgraph funcgraph last-branch-record lbr
Last synced: 20 May 2026
https://github.com/dkorunic/pktstat-bpf
TC, XDP, KProbe and CGroup eBPF based simple Ethernet interface traffic monitor and reporting tool
bpf cgroups cgroups-v2 container docker ebpf kprobes linux network networking observability packet packet-capture tcpdump terminal traffic trafficcontrol xdp
Last synced: 11 Mar 2026
https://github.com/elastic/bpfcov
Source-code based coverage for eBPF programs actually running in the Linux kernel
bpf c codecoverage coverage cpp ebpf llvm llvm-pass
Last synced: 05 Apr 2025
https://github.com/mozillazg/ptcpdump
Process-aware, eBPF-based tcpdump
bpf ebpf ebpf-go ebpf-tc forensics network-capture packet-capture pcap pcapng process-aware sniffer tcpdump tcpdump-like
Last synced: 09 Apr 2025
https://github.com/trailofbits/ebpfpub
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
bpf ebpf llvm monitoring security tracepoints tracing
Last synced: 15 Apr 2025
https://github.com/javierhonduco/rbperf
Low-overhead sampling profiler and tracer for Ruby implemented in BPF
bpf flamegraph performance profilers ruby tracer
Last synced: 22 Jun 2025
https://github.com/landhb/drawbridge
Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
bpf iptables iptables-extension knocker linux-kernel netfilter port-knock port-knocker port-knocking rust
Last synced: 06 Apr 2025
https://github.com/ns1/xdp-workshop
Velocity SJC 2019 - DDoS mitigation made easy with XDP and eBPF
bpf c ddos ddos-mitigation ebpf xdp
Last synced: 27 Apr 2026
https://github.com/lithdew/alon
Remix for Solana.
blockchain bpf hackathon-project llvm solana solana-program webassembly
Last synced: 23 Apr 2025
https://github.com/trailofbits/ebpfault
A BPF-based syscall fault injector
bpf debugging ebpf fault-injection llvm
Last synced: 15 Apr 2025
https://github.com/genuinetools/bpfps
A tool to list and diagnose bpf programs. (Who watches the watchers..? :)
bpf cli linux processing tracing
Last synced: 21 Aug 2025
https://github.com/jschwinger233/skbdump
ebpf-based tcpdump
bpf ebpf network-sniffer tcpdump
Last synced: 05 May 2025
https://aya-rs.github.io/book/
The Aya Book is an introductory book about using the Rust Programming Language and Aya library to build extended Berkley Packet Filter (eBPF) programs.
Last synced: 07 May 2025
https://github.com/aya-rs/book
The Aya Book is an introductory book about using the Rust Programming Language and Aya library to build extended Berkley Packet Filter (eBPF) programs.
Last synced: 07 May 2025
https://github.com/boratanrikulu/durdur
Lightweight packet filtering for Linux: 'durdur' is a high-performance, eBPF-based simple firewall tool that drops packets by IP or DNS domain. Perfect for on-demand network control.
bpf dns ebpf firewall networking xdp
Last synced: 23 Aug 2025
https://github.com/the-tcpdump-group/tcpslice
tcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.
berkeley-packet-filter bpf bsd-packet-filter libpcap packet-capture pcap tcpdump
Last synced: 06 Apr 2025
https://github.com/shramos/pcap-splitter
Pcap-splitter allows you to split a pcap file into subsets of pcap files based on sessions, flows, ip addresses, number of bytes, number of network packets...
bpf filter flow flows ip network pcap pcap-splitter session split tcpdump traffic wireshark
Last synced: 08 Aug 2025
https://github.com/stevenjohnstone/go-bpf-gen
Generate bpftrace scripts for use with golang programs. Works around quirks in the golang runtime.
bpf bpftrace debugging ebpf golang observability
Last synced: 01 Feb 2026
https://github.com/cilium/charts
Helm charts repository for the Cilium project
bpf cni helm kubernetes kubernetes-networking security
Last synced: 22 Jul 2025
https://github.com/eunomia-bpf/libbpf-starter-template
Template designed to get new developers with libbpf development.
Last synced: 19 Jun 2025
https://github.com/rebpf/rebpf
A Rust library to write and load bpf programs built on top of libbpf (no bcc dependency).
Last synced: 08 Sep 2025
https://github.com/fzakaria/eBPF-mpls-encap-decap
Sample project demonstrating how to use eBPF to encap/decap packets with an MPLS label.
bpf bpfilter ebpf ebpf-programs linux linux-kernel-hacking
Last synced: 15 Nov 2025
