eBPF
eBPF is a technology that can run sandboxed programs in a privileged context such as the operating system kernel.
It is used to safely and efficiently extend the capabilities of the kernel at runtime without requiring to change kernel source code or load kernel modules.
Here are 78 public repositories matching this topic...
Demos for Pixie: github.com/pixie-io/pixie
-
Updated
Jun 13, 2023 - Python
Dump unix domain socket traffic with bpf
-
Updated
Dec 11, 2023 - Python
Performance visualisation tools
-
Updated
Feb 19, 2019 - Python
Real-time monitoring of KVM/Qemu VMs
-
Updated
Apr 20, 2024 - Python
Monitor Network Traffic Per Executable, Beautifully Visualized
-
Updated
Jan 2, 2024 - Python
🛡️ Introducing eBPFShield - a powerful 📍IP-intelligence and 📈DNS monitoring tool built using eBPF!
-
Updated
Apr 10, 2023 - Python
duetector🔍: Data Usage Extensible Detector for data usage observability.
-
Updated
Apr 30, 2024 - Python
OPENED Tool to extract specific eBPF functions from large monoliths (tested on Katran, Mizar, Cilium..)
-
Updated
Jun 27, 2023 - Python
ebpH (Extended BPF Process Homeostasis) monitors process behavior on your system to establish normal behavioral patterns. ebpH reports anomalous behavior and prevents attacks by denying anoamlous access requests.
-
Updated
Dec 8, 2022 - Python
eBPF-based ransomware detection using machine learning
-
Updated
Jun 4, 2023 - Python
[Deplicated] Now we have more sophisticated (and compact) implementation in ipftrace2 repository. Please check it as well.
-
Updated
May 25, 2020 - Python
Code for my talk at ebpf 2021 conference
-
Updated
Aug 4, 2021 - Python
A host monitoring proof of concept that uses python and ebpf to watch for bad behavior and optionally take action on it.
-
Updated
Jul 14, 2019 - Python