Alternatives and similar repositories for ebpf-for-windows-demo:

Users that are interested in ebpf-for-windows-demo are comparing it to the libraries listed below

• microsoft / usersim
  ☆80Updated last month
• microsoft / ntosebpfext
  eBPF-For-Windows extension to provide access to Windows kernel functionality
  ☆22Updated last week
• TimMisiak / windup
  WinDbg installer/updater
  ☆39Updated last year
• microsoft / SysinternalsEBPF
  The Linux port of the Sysinternals Sysmon tool.
  ☆255Updated 3 weeks ago
• microsoft / wdkmetadata
  Tooling to generate metadata for Win32 APIs in the Windows Driver Kit (WDK).
  ☆97Updated 2 weeks ago
• microsoft / tracelogging
  TraceLogging events and tracing
  ☆48Updated 2 months ago
• microsoft / SysmonCommon
  The common parts of the Sysinternals Sysmon tool shared between the Windows and Linux versions.
  ☆61Updated last month
• microsoft / ETW
  Event Tracing for Windows tools and samples
  ☆22Updated last month
• microsoft / xdp-for-windows
  XDP speeds up networking on Windows
  ☆387Updated last week
• microsoft / cxplat
  Cross platform, C abstraction layer for both user mode and kernel mode libraries
  ☆31Updated this week
• microsoft / mu_msvm
  VM firmware pkg for Project Mu
  ☆37Updated 3 weeks ago
• vmware / kernel-event-collector-module
  This is the Linux kernel module event collector for the Carbon Black Cloud.
  ☆18Updated last year
• lowleveldesign / takedetour
  A template (and a sample) for writing tracers on Windows. Based on the Detours library.
  ☆31Updated 11 months ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆101Updated 7 months ago
• microsoft / ETW2JSON
  Tool and library to convert ETW logs to JSON files
  ☆88Updated 2 years ago
• microsoft / win-net-test
  Networking related test tools for Windows. Relevant for anyone who is interested in Windows networking.
  ☆26Updated last week
• microsoft / quicreach
  A 'ping' equivalent tool for QUIC.
  ☆114Updated this week
• microsoft / LinuxTracepoints
  C/C++ libraries for working with Linux Tracepoints and user_events
  ☆41Updated 2 months ago
• yardenshafir / IoRing_Demos
  A repository for I/O ring demos, use cases and performance testing on Windows
  ☆42Updated 2 years ago
• rust-vmm / mshv
  Crates for Microsoft Hypervisor ioctls and bindings
  ☆32Updated this week
• microsoft / windows-host-process-containers-base-image
  A lightweight base container image to be used with Windows host process containers
  ☆43Updated 2 years ago
• trailofbits / ebpf-common
  Various utilities useful for developers writing BPF tools
  ☆31Updated last year
• zodiacon / winsta
  Show Window Stations, Desktops and top level windows
  ☆15Updated last year
• zodiacon / InfStudio
  INF Studio for easier working with driver installation files
  ☆36Updated last year
• tailscale / wf
  Package for controlling the Windows firewall (aka Windows Filtering Platform, WFP)
  ☆96Updated last year
• microsoft / ndis-driver-library
  Code to make it easier to write an NDIS network driver on Windows
  ☆82Updated last year
• redcanaryco / ebpfmon
  ☆85Updated 7 months ago
• tarsal-oss / kflowd
  Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…
  ☆56Updated this week
• microsoft / Windows-Driver-Developer-Supplemental-Tools
  Supplemental open-source components for use in developing device drivers for Windows.
  ☆52Updated this week
• AaLl86 / MiniKvm_public
  This repro contains all the code and documentation for the MiniKvm project and the CH9329 controller
  ☆17Updated 3 weeks ago