bpf

There are 55 repositories under bpf topic.

• cilium / cilium

  eBPF-based Networking, Security, and Observability

  bpfcncfcnicontainersebpfk8skernelkuberneteskubernetes-networkingloadbalancingmonitoringnetworkingobservabilitysecuritytroubleshootingxdp
  Language:Go 22776

• bpftrace / bpftrace

  High-level tracing language for Linux

  bccbpfebpfkprobestracepointstracinguprobesusdt
  Language:C++ 9717

• capstone-engine / capstone

  Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

  armarm64bpfdisassemblerethereumframeworkm0s65xxm680xm68kmipspowerpcreverse-engineeringriscvsecuritysparcsystemztms320c64xwebassemblyx86x86-64
  Language:C 8354
• kyanos

  hengyoush / kyanos

  Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient.

  bpfcapturecommand-linecommand-line-toolebpfnetworksniffertcptcpdumptcpdump-like
  Language:C 4841

• zoidyzoidzoid / awesome-ebpf

  A curated list of awesome projects related to eBPF.

  awesomeawesome-listbccbpfebpfhacktoberfestio-visorlinux-bpf-superpowersxdp
  4819
• parca

  parca-dev / parca

  Continuous profiling for analysis of CPU and memory usage, down to the line number and throughout time. Saving infrastructure cost, improving performance, and increasing reliability.

  pprofprofilingcontinuous-profilingprofilesprometheusobservabilitykubernetescontainersgolangperformanceccpppythonrubyrustphpjavascriptbpfebpfebpf-programs
  Language:TypeScript 4646

• cilium / tetragon

  eBPF-based Security Observability and Runtime Enforcement

  bpfebpfkernelkubernetessecurity
  Language:C 4251

• aquasecurity / tracee

  Linux Runtime Security and Forensics using eBPF

  bpfdockerebpfgolangkuberneteslinuxruntime-securitysecurity
  Language:Go 4235

• aya-rs / aya

  Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.

  bpfebpfobservabilityrustsecurity
  Language:Rust 4014

• eunomia-bpf / bpf-developer-tutorial

  eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

  bpfebpfexampleslibbpftutorialxdp
  Language:C 3695
• pwru

  cilium / pwru

  Packet, where are you? -- eBPF-based Linux kernel networking debugger

  linuxnetworkebpfbpftracingkernel
  Language:C 3520

• the-tcpdump-group / tcpdump

  the TCPdump network dissector

  pcappcapngpacket-capturesniffertcpdumplibpcapberkeley-packet-filterbsd-packet-filterbpfauditingsecuritytroubleshooting
  Language:C 3038

• the-tcpdump-group / libpcap

  the LIBpcap interface to various kernel packet capture mechanism

  pcappcapngpacket-capturesnifferlibpcapbpfberkeley-packet-filterbsd-packet-filter
  Language:C 2989

• xdp-project / xdp-tutorial

  XDP tutorial

  bpflibbpftutorialxdp
  Language:C 2789

• inspektor-gadget / inspektor-gadget

  Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF

  bpfbpf-programscncf-projectebpfebpf-programsinspektor-gadgetkinvolkkubernetesprometheus-exporterprometheus-metrics
  Language:C 2607

• libbpf / libbpf

  Automated upstream mirror for libbpf stand-alone build.

  bpflibbpftracing
  Language:C 2542

• cloudflare / ebpf_exporter

  Prometheus exporter for custom eBPF metrics

  ebpflinux-kernelperformancetracingprometheusprometheus-exporterbpflibbpf
  Language:Go 2449

• pythops / oryx

  🕵️‍♂️ TUI for sniffing network traffic using eBPF on Linux

  bpfebpffirewallkernellinuxnetworkobservabilityratatuirustsecuritysniffingsysadmintui
  Language:Rust 2146

• iovisor / kubectl-trace

  Schedule bpftrace programs on your kubernetes cluster using the kubectl

  kubectlkubernetes-clusterkubectl-tracebpfbpftracekubectl-pluginskubectl-plugintraceebpfebpf-programstracepoints
  Language:Go 2140

• kubearmor / KubeArmor

  Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (LSM-BPF, AppArmor).

  bpfcontainersebpfhacktoberfestkernelkuberneteslsmpolicysandboxsecuritysystemtool
  Language:Go 2001

• oracle / bpftune

  bpftune uses BPF to auto-tune Linux systems

  auto-tuningbpfebpflinux
  Language:C 1693

• DavadDi / bpf_study

  bpf 学习仓库

  ebpfbpfco-re
  Language:C 1477
• solang

  hyperledger-solang / solang

  Solidity Compiler for Solana, Polkadot and Stellar

  blockchainbpfcompilerpolkadotrustsmart-contractssolanasoliditysorobanstellarsubstratewasm
  Language:Rust 1357

• dropbox / goebpf

  Library to work with eBPF programs from Go

  ebpfgolangxdpbpfperfeventsgogolang-libraryxdpdumpcatscats-effect
  Language:Go 1160

• mozillazg / ptcpdump

  Process-aware, eBPF-based tcpdump

  ebpfebpf-tctcpdumptcpdump-likeebpf-gonetwork-capturepacket-captureforensicsbpfpcappcapngsnifferprocess-awarecontainerkubernetes
  Language:C 1123
• rbpf

  qmonnet / rbpf

  Rust virtual machine and JIT compiler for eBPF programs

  jit-compilerebpfebpf-programsrustinterpreterpacket-filteringassemblerbpf
  Language:Rust 1052

• libbpf / libbpf-rs

  Minimal and opinionated eBPF tooling for the Rust ecosystem

  bpfebpflibbpf
  Language:Rust 923

• seccomp / libseccomp

  The main libseccomp repository

  bpfseccomplibseccomp
  Language:C 880

• aquasecurity / libbpfgo

  eBPF library for Go. Powered by libbpf.

  bpfgolanggoebpflinux
  Language:Go 822
• XDP-Firewall

  gamemann / XDP-Firewall

  A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is supported with this firewall! I hope this helps network engineers/programmers interested in utilizing XDP!

  xdpfirewallbpfebpfanti-ddosddosddos-protectionddos-mitigationfastfwdosdos-protectionkernellinuxnetworksecurityddos-attacksdos-attackdenial-of-servicedistributed-denial-of-service
  Language:C 741

• getanteon / alaz

  Alaz: Advanced eBPF Agent for Kubernetes Observability – Effortlessly monitor K8s service interactions and performance metrics in your K8s environment. Gain in-depth insights with service maps, metrics, and more, while staying alert to crucial system anomalies 🐝

  ddosifyebpfkubernetesmetricsmonitoringobservabilityprometheusbpfdistributed-tracingebpf-programslogstracing
  Language:C 708

• ccfos / huatuo

  HUATUO is a cloud-native operating system observability project open-sourced by DIDI and incubated under the CCF.

  ccfkernellinuxmetricsobservabilityprofilingtime-seriesautotracingcontainersk8sbpfebpfebpf-exporter
  Language:C 668
• eBPF-Guide

  mikeroyal / eBPF-Guide

  eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.

  ebpfnetwork-analysisobservabilitypacket-sniffertraffic-monitoringbpfvulnerability-detectioninfrastructure-monitoringperformance-monitoringreal-user-monitoringdistributed-tracingtracingebpf-programskubernetes-clusterfalcoopen-telemetrykubernetes-securitylog-analysisxdpsandbox
  Language:Go 617

• carloslack / KoviD

  Red-Team Linux kernel rootkit

  for-educational-purposes-onlyrootkitkernellinuxcmoduleubuntux64backdoortasksttysshbpfbpf-mapsfirewall-bypassassemblyrustcmakellvmred-team
  Language:C 598
• bpftool

  libbpf / bpftool

  Automated upstream mirror for bpftool stand-alone build.

  bpfbpftoolebpflibbpf
  Language:C 594

• xdp-project / bpf-examples

  Making eBPF programming easier via build env and examples

  bpfebpfebpf-programs
  Language:C 522