Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
eBPF
eBPF is a technology that can run sandboxed programs in a privileged context such as the operating system kernel. It is used to safely and efficiently extend the capabilities of the kernel at runtime without requiring to change kernel source code or load kernel modules.
- GitHub: https://github.com/topics/ebpf
- Wikipedia: https://en.wikipedia.org/wiki/EBPF
- Created by: Alexei Starovoitov, Daniel Borkmann
- Released: 2014
- Last updated: 2024-12-23 00:08:03 UTC
- JSON Representation
https://github.com/germancoding/segmentist
Rust eBPF program to determine whether hosts respect MSS
Last synced: 11 Nov 2024
https://github.com/srodi/xdp-ddos-protect
This project provides a BPF XDP program to detect and mitigate DDoS attacks targeting a specific endpoint by monitoring unusually high traffic
amd64 arm64 c ddos-attacks ebpf linux xdp
Last synced: 30 Nov 2024
https://github.com/mfontanini/sockwho
Inspect socketaddrs using eBPF tracepoints
Last synced: 19 Nov 2024
https://github.com/cirocosta/llb
[wip] The low-level load balancer
bpf ebpf linux load-balancer networking
Last synced: 30 Nov 2024
https://github.com/fzakaria/rust-ebpf-demo
A simple pure hello world demo of writing an ebpf filter in rust
ebpf ebpf-programs linux linux-kernel rust
Last synced: 06 Nov 2024
https://github.com/astrid-project/cubebeat
Custom Beat of the Elastic Stack to interact with the Polycube-based eBPF cubes.
beats configuration cube dynamically ebpf ebpf-cubes elasticsearch golang logstash polycube programmability runtime settings
Last synced: 11 Dec 2024
https://github.com/devops-360-online/cilium-k8s-cni-guide
A comprehensive guide to deploying and managing Cilium as a CNI provider in Kubernetes, covering eBPF, security, observability, cluster mesh, and routing modes
cilium cloud-native cluster-mesh cni ebpf hubble ip-routing kubernetes network-security networking observability service-mesh
Last synced: 10 Nov 2024
https://github.com/fkie-cad/bpf-rootkit-workshop
Workshop: Forensic Analysis of eBPF based Linux Rootkits
bpf bpf-malware ebpf ebpf-malware forensics linux live-forensics malware memory-forensics rootkit
Last synced: 13 Nov 2024
https://github.com/cen-ngc5139/nfs-trace
NFS Trace 是一个强大的工具,使用 eBPF 技术监控和分析 NFS(网络文件系统)操作。它提供了 NFS 性能指标的实时洞察,并帮助诊断分布式文件系统中的问题。
cloudnative ebpf kubernetes observability
Last synced: 12 Oct 2024
https://github.com/samankhalife/x-defender
X-Defender💥 is an advanced (D)DoS mitigation tool built with eBPF and XDP. It not only filters and limits malicious traffic in real-time but also takes a proactive and aggressive approach to neutralize threats before they impact your network.
ddos-mitigation ddos-protection ebpf ebpf-programs xdp
Last synced: 12 Oct 2024
https://github.com/fjebaker/ebpf-energy-monitor
Monitoring energy usage with eBPF at process level granularity.
bpf ebpf energy-consumption energy-monitor zig
Last synced: 06 Nov 2024
https://github.com/zhuangqh/blog
Share/record valuable experiences/techniques at work.
Last synced: 20 Nov 2024
https://github.com/containerscrew/nflux
Network monitoring and firewall using EBPF, XDP and TC. Powered by Aya-rs 🐝
aya ebpf kernel linux networking rust
Last synced: 23 Dec 2024
https://github.com/astrid-project/cb-manager
APIs to interact with the Context Broker's database. Through a REST Interface, it exposes data and events stored in the internal storage system in a structured way. It provides uniform access to the capabilities of monitoring agents.
agent beats control data ebpf elasticsearch log logstash management programmability security
Last synced: 05 Nov 2024
https://github.com/tpapagian/go-ebpf-timer
An example to demonstrate the use of eBPF timers.
Last synced: 20 Nov 2024
https://github.com/gvencadze/tracing-demo
Manifests for different tracing systems + demo-apps
ebpf kubernetes observability tracing
Last synced: 13 Nov 2024
https://github.com/thejokr/ebpf-playground
Collection of small eBPF code examples
ebpf golang-examples linux-kernel observability
Last synced: 17 Nov 2024
https://github.com/szymonkubica/micro-bpf
µBPF - a framework for microcontroller compartmentalization using eBPF
compartmentalization ebpf embedded-systems fault-isolation internet-of-things microcontrollers middleware virtual-machine
Last synced: 20 Nov 2024
https://github.com/mar0ls/bcc_ubuntu22.04_installer
Installer BPF Compiler Collection (BCC) on Ubuntu 22.04 LTS
autoinstaller bash-script ebpf gcc kernel linux python3
Last synced: 20 Nov 2024
https://github.com/aibor/netfilter_exporter
OpenMetrics exporter for custom netfilter internal metrics
ebpf go golang linux netfilter openmetrics prometheus-exporter
Last synced: 20 Nov 2024
https://github.com/raghu-nandan-bs/cpupeek
Peek into CPU execution time of processes
cpu-monitoring ebpf system-engineering
Last synced: 30 Nov 2024
https://github.com/vladd12/bpf-program
eBPF program for net traffic filtering
Last synced: 29 Nov 2024
https://github.com/asphaltt/bpfbak
bpfbak is a tiny tool to backup bpf objects under bpffs. Apache 2.0 License
Last synced: 20 Nov 2024
https://github.com/moolen/neuwerk
🛡️ cloud-native eBPF network egress firewall
cloud-native ebpf firewall kubernetes security
Last synced: 09 Nov 2024
https://github.com/jalalmostafa/socktrace
A tool to trace BSD sockets concurrency behavior using eBPF
bsd-sockets ebpf ebpf-programs linux linux-kernel socket-programming sockets
Last synced: 17 Nov 2024
https://github.com/aditya1404sal/vulcanguard
Vulcan Guard is a comprehensive network management tool designed to mitigate DDOS attacks
ebpf golang load-balancer packet-filter ratelimiter reverse-proxy
Last synced: 12 Oct 2024
https://github.com/itscheithanya/ebpf-linux-ransomware-detection
A comprehensive overview of a multi-layered approach to ransomware detection integrating eBPF technology and machine learning,
Last synced: 20 Nov 2024
https://github.com/chaostoolkit-incubator/chaostoolkit-pixie
Chaos Toolkit extension for the Pixie/eBPF platform
chaostoolkit chaostoolkit-extension ebpf
Last synced: 16 Nov 2024
https://github.com/aibor/cpumap-loop
Example program show casing eBPF cpumap infinite loop
Last synced: 20 Nov 2024
https://github.com/lucasbn/final-year-project
Using eBPF to replace namespaces in container networking
containers ebpf linux-kernel network-namespaces networking
Last synced: 03 Dec 2024
https://github.com/keisku/nperf
A Network PERFormance monitor tool
ebpf golang network-programming opentelemetry
Last synced: 11 Dec 2024
https://github.com/asphaltt/bpfsyscalldist
An eBPF syscall profiler focused on BPF syscall.
bpf-syscall bpfsyscalldist ebpf linux-syscall
Last synced: 13 Nov 2024
https://github.com/asphaltt/pkt-stucker
An experiment to reproduce the issue packet stuck in lockless pfifo_fast qdisc. [FAILED]
Last synced: 13 Nov 2024
https://github.com/asphaltt/syscalldist
A bcc-like tool to analyze syscall's histogram. Apache License 2.0
Last synced: 13 Nov 2024
https://github.com/eset/eei-agent-linux-probes
eBPF probes used by ESET Linux products
Last synced: 09 Nov 2024
https://github.com/rogercoll/ebpfutil
retrivies basic information of the active BPF programs
Last synced: 11 Nov 2024
https://github.com/rogercoll/learningebpf
Examples of C++ programs that generates BPF bytecodes
Last synced: 04 Dec 2024
https://github.com/kube-tarian/tarian-policy-engine
eBPF based threat elimination - Enforce Policies and Automated actions for auto threat elimination for Kubernetes. Also, share the threat(s) info & solution with community with simple yaml based configurations as eBPF functions..
ebpf kubernetes kubernetes-security threat-elimination threat-hunting threat-intelligence
Last synced: 12 Nov 2024
https://github.com/monkburger/bpf-mysql-querylog
BPF based MySQL query logging tool
Last synced: 09 Nov 2024
https://github.com/lucasbn/ebpf-lb
Layer 4 hash based load balancer written with eBPF
Last synced: 21 Dec 2024
https://github.com/s5uishida/simple_measurement_of_eupf_performance
Simple Measurement of eUPF(eBPF/XDP UPF) Performance
5g 5gc ebpf eupf omec-pfcpsim performance pfcpsim proxmox proxmox-ve trex upf xdp
Last synced: 21 Dec 2024
https://github.com/majeinfo/ebpf_tools
Python scripts that use eBPF to diagnose problems
Last synced: 23 Dec 2024
https://github.com/m-osource/mienro
eXpress Data Path Router
ddos-protection ebpf ebpf-programs fast-forward firewall ipv6 kernel-bypass linux low-latency network-address-translation networking openbsd router software vlan
Last synced: 20 Dec 2024
https://github.com/asphaltt/bpflbr
bpflbr is an eBPF enhanced tool to trace some details of bpf prog with LBR. License Apache 2.0
bpf bpflbr ebpf last-branch-record lbr
Last synced: 14 Dec 2024
https://github.com/lorenzosaino/xdp-playground
Development environment for experimenting with XDP on a VM
Last synced: 07 Dec 2024
https://github.com/asphaltt/tcpw
tcpw: An eBPF enhanced tool to capture tcp tuple info of curl,telnet,socat tools. License Apace 2.0
Last synced: 23 Dec 2024
https://github.com/lawndoc/seccomp-ci-demo
Automate seccomp filter generation in your CI pipeline
ci container-security containers devops devsecops ebpf linux seccomp security security-automation syscalls
Last synced: 14 Dec 2024
https://github.com/junka/pycbpf
python script which compile cbpf to C code for BCC
bcc cbpf ebpf packet-capture tcpdump
Last synced: 06 Dec 2024
https://github.com/githubfoam/tracee-githubactions
tracee forensics ebpf githubactions
ebpf forensics githubactions linux
Last synced: 11 Dec 2024
https://github.com/githubfoam/k8s-ebpf-sandbox
kubernetes ebpf
ebpf kubernetes network-observability network-security-monitoring pipeline
Last synced: 11 Dec 2024
https://github.com/danny-yamamoto/lsm
LSM stands for Linux Security Modules which is a framework which allows developers to write security systems on top of the Linux kernel.
Last synced: 11 Nov 2024
https://github.com/isu-kim/tempest
Simple eBPF Reverse Proxy for Servers Behind the Firewalls
Last synced: 11 Nov 2024
https://github.com/tyrone-wu/bpf-prog-telegraf-plugin
Telegraf input plugin for collecting metadata metrics on BPF programs on the host.
bpf ebpf telegraf telegraf-plugin
Last synced: 19 Nov 2024
https://github.com/claby2/ebpfcca
🐝 Evaluating eBPF as a Platform for Congestion Control Algorithm Implementation
congestion-control ebpf linux tcp
Last synced: 12 Dec 2024
https://github.com/rzetelskik/bpf-sanitizer
Linux kernel patch introducing a new eBPF program type for sanitizing writes.
bpf ebpf ebpf-programs linux-kernel
Last synced: 07 Nov 2024
https://github.com/eriksjolund/podman-map-uid-docs
Documenation of how to map UIDs and GIDs with Podman
demo documentation ebpf example inspektor-gadget podman
Last synced: 19 Dec 2024
https://github.com/ebpfcca/ebpfcca
🐝 Evaluating eBPF as a Platform for Congestion Control Algorithm Implementation
congestion-control ebpf linux tcp
Last synced: 13 Dec 2024
https://github.com/chenhengqi/bpf-network
BPF network library for chaos engineering.
Last synced: 25 Nov 2024
https://github.com/thelumberjhack/stackplz
基于eBPF的堆栈追踪工具 - eBPF-based strace tool
Last synced: 29 Sep 2024
https://github.com/dorkamotorka/ebpf-workshop
List of eBPF exercises for hosting workshops
Last synced: 19 Nov 2024
https://github.com/saidjawad/xdp-tutorial-go
XDP Tutorial with Go user space programs.
Last synced: 20 Nov 2024
https://github.com/muink/einat-ebpf
An eBPF-based Endpoint-Independent(Full Cone) NAT for Linux
Last synced: 29 Sep 2024
https://github.com/gukoff/dynamicprobes
USDT probes in .NET on Linux
dotnet dynamic-tracing ebpf linux usdt
Last synced: 19 Nov 2024
https://github.com/unpackdev/fdb
The (f)db project focuses on building high-performance transport layers atop key-value databases like MDBX. Supporting protocols like QUIC, UDS, TCP, UDP, and Dummy for testing purposes. It aims for ultra-fast, low-latency data transfers, making it ideal (almost) for real-time applications like high-frequency trading.
ebpf gnet golang mdbx otel quic tcp udp uds
Last synced: 19 Nov 2024
https://github.com/bendahl/ebpf-evaluation
eBPF Framework Evaluation Project
bpf cpp ebpf go golang linux linux-kernel rust
Last synced: 28 Sep 2024
https://gitlab.com/aarcange/rv-ebpf
RV monitor automata models powered by eBPF tracing
Linux Kernel automata ebpf tracing
Last synced: 23 Oct 2024
https://github.com/jgalar/LinuxCon2022-Benchmarks
Suite of benchmarks developed for my presentation at LinuxCon Europe 2022
benchmark ebpf lttng performance
Last synced: 23 Oct 2024
https://github.com/ancat/lutra
Lutra automatically detects and destroys reverse shells.
Last synced: 18 Dec 2024
https://github.com/bengentil/wiretap
an eBPF utility to capture TLS data
ebpf go golang observability openssl uprobes
Last synced: 03 Dec 2024
https://github.com/martichou/nrt-onl
Near Real Time Outage Notification Library
Last synced: 11 Nov 2024
https://github.com/ashishtiwari1993/slides.ashish.one
Collection of all slides presented by Ashish Tiwari
ebpf elastic elasticsearch function-calling genai
Last synced: 20 Nov 2024
https://github.com/prosenjitjoy/learning-modern-linux
Essential skills to understand the internals and improve the flow of working with modern Linux.
docker-image ebpf grafana podman prometheus shell-script tmux
Last synced: 19 Dec 2024
https://github.com/digilolnet/pint-c2
eBPF evading C2
av-bypass av-evasion c2 ebpf rat
Last synced: 20 Nov 2024
https://github.com/fug0/ebpm
Embedded BPF Performance Monitor (ebpm) — is a modern light-weight Observability and Application Performance Monitoring tool powered by eBPF and most suitable for embedded systems.
apm application-performance-monitoring ebpf embedded-systems linux monitoring observability tracing
Last synced: 20 Nov 2024
https://github.com/miladhzzzz/linux-epbf-poc
eBPF toolkit for implementing custom logic . Proof of Concept
Last synced: 20 Nov 2024
https://github.com/scm-probe/scm
Syscall monitoring and auditing tool built using eBPF
ebpf ebpf-exporter golang influxdb security security-audit security-tools
Last synced: 20 Nov 2024
https://github.com/gruyaume/eupf-k8s-operator
Juju charm for operating eUPF on Kubernetes
Last synced: 20 Nov 2024
https://github.com/laugharne/keynote__ebpf_-_everything_you_need_to_know_in_5_minutes
eBPF has become the key technology for infrastructure software. This session tells you everything you need to know about eBPF in 5 minutes. Why eBPF matters and why it exists. What it can do. What it can’t do. Who uses it for what. And finally, what the future holds.
Last synced: 20 Nov 2024