CrowdStrike / bpfmon-exampleLinks
proof-of-concept example of using eBPF to Monitor for eBPF Map tampering
☆22Updated 4 years ago
Alternatives and similar repositories for bpfmon-example
Users that are interested in bpfmon-example are comparing it to the libraries listed below
Sorting:
- A crawler for kernel releases distributed by the major Linux distributions.☆13Updated 8 months ago
- agent for handling seccomp descriptors for container runtimes☆46Updated last year
- Use eBPF to inject chaos into local processes☆64Updated 9 months ago
- Kit for building Falco drivers: kernel modules or eBPF probes☆65Updated last week
- Kubernetes offensive framework built in eBPF☆37Updated 2 years ago
- ☆88Updated 11 months ago
- monitor and protect SSH sessions with eBPF☆69Updated 3 years ago
- eBPF Library for Go☆29Updated last month
- A file system events notifier based on eBPF☆69Updated 2 years ago
- Publications from the eBPF foundation☆23Updated 7 months ago
- Custom load balancing implementation for SO_REUSEPORT with eBPF☆22Updated last year
- Elastic's eBPF☆68Updated 3 weeks ago
- Detect compiler names and versions from ELF files☆27Updated last month
- ebpf compiler in Go; Write Go, get ebpf☆33Updated 7 months ago
- Trace deep kernel events through eBPF and lsm hooks☆37Updated 4 years ago
- Simple root privilege escalation detection using eBPF 🐝☆12Updated 4 months ago
- Code coverage tooling for eBPF☆37Updated 11 months ago
- BPF IP routing toolkit☆22Updated 2 weeks ago
- Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…☆65Updated 2 months ago
- Example BPF program with LSM hooks☆33Updated 4 years ago
- A project to collect eBPF verifier errors and how they can be resolved☆38Updated 5 months ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆147Updated 3 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Updated 3 years ago
- A collection of bypasses and exploits for eBPF-based cloud security.☆23Updated last year
- Getting Started with eBPF☆24Updated last year
- ☆11Updated 7 months ago
- BPF with GO and Docker☆24Updated 3 years ago
- ☆23Updated 4 years ago
- Linux Kernel Runtime Integrity with eBPF☆179Updated last year
- The kernel tracer that attaches eBPF probes to containers for capturing TLS traffic☆28Updated last week