eBPF topic

eBPF is a technology that can run sandboxed programs in a privileged context such as the operating system kernel. It is used to safely and efficiently extend the capabilities of the kernel at runtime without requiring to change kernel source code or load kernel modules.

List eBPF repositories

exectrace

21
Stars
2
Forks
Watchers

Simple eBPF-based exec snooping on Linux packaged as a Go library.

goxdp-template

26
Stars
4
Forks
Watchers

A sample for writing XDP programs in Go

awesome-ebpf

3.9k
Stars
350
Forks
Watchers

A curated list of awesome projects related to eBPF.

bitcoind-observer

30
Stars
4
Forks
Watchers

EXPERIMENTAL: Bitcoin Core Prometheus exporter based on User-Space, Statically Defined Tracing and eBPF.

ebpf_exporter

74
Stars
13
Forks
Watchers

A Prometheus exporter which uses eBPF to measure block IO request latency / size

OpenCSD

51
Stars
14
Forks
Watchers

OpenCSD: eBPF Computational Storage Device (CSD) for Zoned Namespace (ZNS) SSDs in QEMU

pixie

5.3k
Stars
411
Forks
Watchers

Instant Kubernetes-Native Application Observability

ecapture

13.0k
Stars
1.4k
Forks
98
Watchers

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

skywalking

23.4k
Stars
6.4k
Forks
851
Watchers

APM, Application Performance Monitoring System

cilium

18.9k
Stars
2.7k
Forks
314
Watchers

eBPF-based Networking, Security, and Observability