eBPF topic

eBPF is a technology that can run sandboxed programs in a privileged context such as the operating system kernel. It is used to safely and efficiently extend the capabilities of the kernel at runtime without requiring to change kernel source code or load kernel modules.

List eBPF repositories

kubectl-trace

2.0k
Stars
164
Forks
Watchers

Schedule bpftrace programs on your kubernetes cluster using the kubectl

verified publisher icon iovisor

rbpf

843
Stars
209
Forks
Watchers

Rust virtual machine and JIT compiler for eBPF programs

verified publisher icon qmonnet

ntopng

6.0k
Stars
633
Forks
Watchers

Web-based Traffic and Security Network Traffic Monitoring

verified publisher icon ntop

goebpf

1.1k
Stars
85
Forks
Watchers

Library to work with eBPF programs from Go

verified publisher icon dropbox

ebpf_exporter

2.1k
Stars
221
Forks
Watchers

Prometheus exporter for custom eBPF metrics

verified publisher icon cloudflare

eBPF-for-Ghidra

198
Stars
26
Forks
Watchers

eBPF Processor for Ghidra

verified publisher icon Nalen98

go-tc

413
Stars
44
Forks
Watchers

traffic control in pure go - it allows to read and alter queues, filters and classes

verified publisher icon florianl

sockdump

314
Stars
47
Forks
Watchers

Dump unix domain socket traffic with bpf

verified publisher icon mechpen

ebpf

249
Stars
23
Forks
Watchers

eBPF Utilities, Maps, and more

verified publisher icon newtools

XDP-Firewall

542
Stars
92
Forks
Watchers

A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is...

verified publisher icon gamemann