Yelp / pidtree-bccLinks
eBPF tool for logging process ancestry of outbound TCP connections
☆44Updated last month
Alternatives and similar repositories for pidtree-bcc
Users that are interested in pidtree-bcc are comparing it to the libraries listed below
Sorting:
- ptrace-based event producer for udig☆67Updated 2 years ago
- IOModule manager and plugins☆37Updated 8 years ago
- 🐝 BPFBox 📦 Exploring process confinement in eBPF☆103Updated last year
- eBPF based syscalls, files and network events tracing framework☆93Updated 4 years ago
- BPF based FIM solution☆42Updated 2 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆116Updated 2 years ago
- Easier tracing of packets through iptables☆35Updated 3 months ago
- efficient linux security monitoring☆26Updated 6 years ago
- A tool to list and diagnose bpf programs. (Who watches the watchers..? :)☆95Updated 4 years ago
- Simplifying Seccomp enforcement in containerized or non-containerized apps☆110Updated 4 years ago
- Let's share some eBPF love!☆45Updated 5 years ago
- Automated build and mirror of eBPF kernel probes for use as a driver with the Falco runtime security agent (https://falco.org/)☆16Updated 7 months ago
- agent for handling seccomp descriptors for container runtimes☆46Updated last year
- Find binary files not installed through package manager☆11Updated last year
- Kit for building Falco drivers: kernel modules or eBPF probes☆65Updated last week
- Slides and Workshop Instructions for a BPF Introduction @Sqreen☆11Updated 5 years ago
- ☆41Updated 4 years ago
- A package for handling ssh certificates☆45Updated 3 years ago
- LSM BPF module to block pwnkit (CVE-2021-4034) like exploits☆21Updated 3 years ago
- Build custom Docker seccomp profiles for containers by finding syscalls it uses.☆90Updated 4 years ago
- Intercept gRPC traffic of dockerd and containerd with eBPF☆12Updated 2 years ago
- flexible, structured event replication format for DNS servers (Protocol Buffers schema)☆25Updated 4 months ago
- The Container Security Book—a free book for practitioners☆83Updated 5 years ago
- eBPF - extended Berkeley Packet Filter tooling☆122Updated 2 years ago
- ## Auto-archived due to inactivity. ## profile eBPF programs from Go☆87Updated last year
- traffic control daemon☆21Updated 7 years ago
- Falco Running with Ptrace(2) for Kernel Events☆36Updated 4 years ago
- An open, unofficial registry of linux packet mark bits (aka fwmark, connmark, netfilter, iptables, nftables)☆133Updated 4 years ago
- Now moved into `github.com/inspektor-gadget/inspektor-gadget/pkg/gadget-collection/gadgets/traceloop`. Tracing system calls in cgroups u…☆198Updated 2 years ago
- Documentation for Prodfiler, the distributed lightweight continuous whole-system profiler☆61Updated 2 years ago