This repository contains a tool which traces syscalls in a fast way using eBPF linux kernel feature
-
Updated
Jun 30, 2017 - C++
eBPF is a technology that can run sandboxed programs in a privileged context such as the operating system kernel.
It is used to safely and efficiently extend the capabilities of the kernel at runtime without requiring to change kernel source code or load kernel modules.
This repository contains a tool which traces syscalls in a fast way using eBPF linux kernel feature
ebpf profiler for jvm
Binary Ninja eBPF & Solana plugin (disasm & LLIL)
My sandbox for tinkering with kernel tracing, performance and BPF tools
A complete subset of SRv6 local function & transit written in XDP
basic ebpf playground to work and play a little with it
Generate C structs serialization-free bindings and marshal / unmarshal functions for JSON (Can be used for pass structs between Wasm and eBPF/host)
eBPF/XDP-based software framework for fast network services running in the Linux kernel.
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
A sample PoC for container-aware exec events for osquery
Gyeeta - An Open Source Observability Product for your Infrastructure, Services and Processes. This repository is for the Agent and Server C++ code.
A eBPF verifier based on Crab