Linux kernel source tree

BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

Xv6 for RISC-V

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient.

A constant throughput, correct latency recording variant of wrk

eBPF-based Security Observability and Runtime Enforcement

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…

A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

一个深挖 Linux 内核的新功能特性，以 io_uring, cgroup, ebpf, llvm 为代表，包含开源项目，代码案例，文章，视频，架构脑图等

🎯 A general-purpose protocol stack analysis and debugging tool based on eBPF 🧰

基于eBPF的堆栈追踪工具

Get eBPF programs running from the cloud to the kernel in 1 line of bash

Process-aware, eBPF-based tcpdump

C implementation of the Raft Consensus protocol, BSD licensed

LMP provides an eBPF Supermarket for developers, including eBPF tools, open-source projects based on eBPF, eBPF learning materials, Linux kernel learning materials, and more.

Alaz: Advanced eBPF Agent for Kubernetes Observability – Effortlessly monitor K8s service interactions and performance metrics in your K8s environment. Gain in-depth insights with service maps, met…

天问之路 - 学习笔记&学习周报。内容包括但不限于C++ STL、编译原理、LLVM IR Pass代码优化、CSAPP Lab、uCore操作系统等等。

MIRACL Cryptographic SDK: Multiprecision Integer and Rational Arithmetic Cryptographic Library is a C software library that is widely regarded by developers as the gold standard open source SDK for…

A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29

Linux Kernel Runtime Guard

MCP Monitoring with eBPF

learn how to use BPF/eBPF

A Linux Host-based Intrusion Detection System based on eBPF.

Container traffic visibility library based on eBPF

Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)