ebpf

There are 173 repositories under ebpf topic.

• apache / skywalking

  APM, Application Performance Monitoring System

  apmdapperdistributed-tracingebpfloggingmetricsobservabilityopen-telemetryprometheusservice-meshskywalkingtelegrafweb-performancezabbix
  Language:Java 23546

• cilium / cilium

  eBPF-based Networking, Security, and Observability

  bpfcncfcnicontainersebpfk8skernelkuberneteskubernetes-networkingloadbalancingmonitoringnetworkingobservabilitysecuritytroubleshootingxdp
  Language:Go 19362

• kubesphere / kubesphere

  The container platform tailored for Kubernetes multi-cloud, datacenter, and edge management ⎈ 🖥 ☁️

  devopscontainer-managementk8scncfcloud-nativeservicemeshkubespherekubernetes-platform-solutionkubernetesjenkinsistioobservabilitymulti-clusterhacktoberfestargocdebpfllm
  Language:Go 14728

• gojue / ecapture

  Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

  androidandroid-https-captureebpfebpf-goebpf-tcebpf-uprobegolanghttpslinuxnetwork-capturesecurity-auditsslssldumptcpdumptls
  Language:C 9058

• bpftrace / bpftrace

  High-level tracing language for Linux eBPF

  bccbpfebpfkprobestracepointstracinguprobesusdt
  Language:C++ 8269
• falco

  falcosecurity / falco

  Cloud Native Runtime Security

  cloud-nativecncfcncf-projectcontainersebpffalcohacktoberfestkubernetesruntime-securitysecurity
  Language:C++ 7128

• ntop / ntopng

  Web-based Traffic and Security Network Traffic Monitoring

  ntopngrealtimenetworksflowipfixtraffic-monitoringpacket-analyserpacket-processingnetflowsnmpebpfdockerkubernetes
  Language:Lua 6067
• ebpf

  cilium / ebpf

  ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.

  btfebpfgogolanglinux
  Language:Go 5969

• projectcalico / calico

  Cloud native networking and network security

  cnicni-pluginebpfk8skuberneteskubernetes-networkingkubernetes-windowsnetwork-policynetworkingsecuritywindowsxdpidentity-aware-policyopenstackhost-protectioncats
  Language:Go 5738

• pixie-io / pixie

  Instant Kubernetes-Native Application Observability

  aksapache-arrowcloud-nativecncfdistributed-systemsebpfeksgkegolangkubernetesmachine-learningmetricsminikubemonitoringobservabilitypandaspixiepxpx-runvega
  Language:C++ 5402

• coroot / coroot

  Coroot is an open-source APM & Observability tool, a DataDog and NewRelic alternative 📊, 🖥️, 👉. Powered by eBPF for rapid insights into system performance. Monitor, analyze, and optimize your infrastructure effortlessly for peak reliability at any scale.

  alertingapmdashboarddatabase-monitoringdevopsdistributed-tracingebpfk8skuberneteslog-analysismetricsmicroservicemonitoringnetwork-monitoringobservabilitypostgresql-monitoringprometheusservice-mapslotracing
  Language:Go 4794

• zoidyzoidzoid / awesome-ebpf

  A curated list of awesome projects related to eBPF.

  awesomeawesome-listbccbpfebpfhacktoberfestio-visorlinux-bpf-superpowersxdp
  4043
• parca

  parca-dev / parca

  Continuous profiling for analysis of CPU and memory usage, down to the line number and throughout time. Saving infrastructure cost, improving performance, and increasing reliability.

  pprofprofilingcontinuous-profilingprofilesprometheusobservabilitykubernetescontainersgolangperformanceccpppythonrubyrustphpjavascriptbpfebpfebpf-programs
  Language:TypeScript 3972

• cilium / tetragon

  eBPF-based Security Observability and Runtime Enforcement

  bpfebpfkernelkubernetessecurity
  Language:Go 3440

• cilium / hubble

  Hubble - Network, Service & Security Observability for Kubernetes using eBPF

  ciliumebpfkubernetesmetricsnetworkingobservabilitysecuritytracing
  Language:Makefile 3405

• aquasecurity / tracee

  Linux Runtime Security and Forensics using eBPF

  bpfdockerebpfgolangkuberneteslinuxruntime-securitysecurity
  Language:Go 3382

• odigos-io / odigos

  Distributed tracing without code changes. 🚀 Instantly monitor any application using OpenTelemetry and eBPF

  dotnetebpfgojavajavascriptkuberneteslogsmetricsmonitoringobservabilityopentelemetrytraces
  Language:Go 3111

• aya-rs / aya

  Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.

  bpfebpfobservabilityrustsecurity
  Language:Rust 2923

• daeuniverse / dae

  eBPF-based Linux high-performance transparent proxy solution.

  daeebpfgolangpolicy-routingsdwantransparent-proxy
  Language:Go 2763

• seladb / PcapPlusPlus

  PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.

  cppdpdkebpflibpcaplinuxmac-osxmultiplatformnetwork-forensicsnetwork-toolsnetworkingpacket-craftingpacket-parsingpacket-processingpcappcap-filespcappluspluspf-ringtcp-reassemblywindowswinpcap
  Language:C++ 2647

• skydive-project / skydive

  An open source real-time network topology and protocols analyzer

  networkingnetwork-topologyflowmonitoringtraffic-analysistraffic-monitoringmetricspacket-snifferpacket-analyzerpcapebpf
  Language:Go 2627
• pwru

  cilium / pwru

  Packet, where are you? -- eBPF-based Linux kernel networking debugger

  bpfebpfkernellinuxnetworktracing
  Language:C 2618

• microsoft / retina

  eBPF distributed networking observability tool for Kubernetes

  ebpfkubernetesnetworkingobservability
  Language:Go 2559

• elastic / otel-profiling-agent

  The production-scale datacenter profiler (C/C++, Go, Rust, Python, Java, NodeJS, .NET, PHP, Ruby, Perl, ...)

  ebpfprofiler
  Language:C 2174

• eunomia-bpf / bpf-developer-tutorial

  eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

  bpfchatgptco-reebpflibbpfllmtutorial
  Language:C 2152

• cloudflare / ebpf_exporter

  Prometheus exporter for custom eBPF metrics

  bpfebpflibbpflinux-kernelperformanceprometheusprometheus-exportertracing
  Language:Go 2091

• inspektor-gadget / inspektor-gadget

  The eBPF tool and systems inspection framework for Kubernetes, containers and Linux hosts.

  bpfbpf-programscncf-projectebpfebpf-programsinspektor-gadgetkinvolkkubernetesprometheus-exporterprometheus-metrics
  Language:C 2067

• iovisor / kubectl-trace

  Schedule bpftrace programs on your kubernetes cluster using the kubectl

  bpfbpftraceebpfebpf-programskubectlkubectl-pluginkubectl-pluginskubectl-tracekubernetes-clustertracetracepoints
  Language:Go 2005

• groundcover-com / caretta

  Instant K8s service dependency map, right to your Grafana.

  ebpfkubernetesobservability
  Language:Go 1741

• h3xduck / TripleCross

  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

  backdoorebpfkernellibbpfrootkitsecurity
  Language:C 1739

• foniod / redbpf

  Rust library for building and running BPF/eBPF modules

  ebpfffi-bindingsrust-ffirust-library
  Language:Rust 1708

• 0voice / kernel_new_features

  一个深挖 Linux 内核的新功能特性，以 io_uring, cgroup, ebpf, llvm 为代表，包含开源项目，代码案例，文章，视频，架构脑图等

  linux-kerneliouringebpfkvmcephfuse
  Language:C 1667

• alibaba / ilogtail

  Fast and Lightweight Observability Data Collector

  aliyunapmcloud-nativeebpfobservabilitysls
  Language:C++ 1622

• krisnova / boopkit

  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

  ebpflinux-kernel-hackingsecuritytcp
  Language:C 1531

• DavadDi / bpf_study

  bpf 学习仓库

  bpfco-reebpf
  Language:C 1377

• kubearmor / KubeArmor

  Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

  lsmtoolsecuritycontainerskubernetespolicysystembpfebpfkernelhacktoberfestsandbox
  Language:Go 1318