redcanaryco/ebpfmon external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

redcanaryco/ebpfmon

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/redcanaryco/ebpfmon)

Close

redcanaryco / ebpfmonView on GitHubMore

• External links
• Readme badge

☆92Dec 5, 2025Updated 3 months ago

Alternatives and similar repositories for ebpfmon

Users that are interested in ebpfmon are comparing it to the libraries listed below

• maxgio92 / krawler

  View on GitHub
  A crawler for kernel releases distributed by the major Linux distributions.
  ☆13Oct 18, 2024Updated last year
• florianl / go-diag

  View on GitHub
  c-binding free API for golang to communicate with the socket subsystem of netfilter
  ☆12Sep 20, 2025Updated 5 months ago
• runZeroInc / excrypto

  View on GitHub
  excrypto offers specialized versions of the Go crypto, TLS, x509, and SSH packages designed for security research.
  ☆15Feb 16, 2026Updated 2 weeks ago
• DataDog / ebpf-manager

  View on GitHub
  This manager helps handle the life cycle of your eBPF programs
  ☆156Feb 18, 2026Updated 2 weeks ago
• TrapaSecurity / Presentations

  View on GitHub
  ☆16Jun 23, 2024Updated last year
• danderson / dbus

  View on GitHub
  A DBus client implementation in Go.
  ☆17Feb 4, 2025Updated last year
• ebpfdev / explorer

  View on GitHub
  eBPF explorer is Web UI that lets you see all the maps and programs in eBPF subsystem
  ☆93Jun 18, 2023Updated 2 years ago
• CiscoCXSecurity / unix-audit

  View on GitHub
  Framework for generating audit commands for Unix security audits
  ☆66Aug 1, 2023Updated 2 years ago
• hardenedvault / ved-ebpf

  View on GitHub
  VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
  ☆168Sep 7, 2024Updated last year
• elastic / bpfcov

  View on GitHub
  Source-code based coverage for eBPF programs actually running in the Linux kernel
  ☆137Feb 6, 2025Updated last year
• rkbennett / icmpsh

  View on GitHub
  Simple reverse ICMP shell
  ☆14Apr 30, 2024Updated last year
• blunderbuss-wctf / koth_simulator

  View on GitHub
  A simulation of the RFCTF KOTH game.
  ☆10Aug 14, 2020Updated 5 years ago
• hackingbits / hackingbits.github.io

  View on GitHub
  ☆10Jun 22, 2025Updated 8 months ago
• patito / nerdCV

  View on GitHub
  Making me more antisocial and weird.
  ☆10Oct 6, 2020Updated 5 years ago
• ozpingux / BasicLinuxForensicScript

  View on GitHub
  Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
  ☆43Jul 5, 2023Updated 2 years ago
• antitree / seccomp-diff

  View on GitHub
  ☆86Feb 4, 2026Updated last month
• jsacco / PPL_Bypass

  View on GitHub
  ☆12Apr 7, 2022Updated 3 years ago
• Permiso-io-tools / bucket-shield

  View on GitHub
  ☆14Jan 8, 2026Updated last month
• kn32 / parallels-plist-escape

  View on GitHub
  Exploits for CVE-2023-27327 and CVE-2023-27328
  ☆14May 9, 2023Updated 2 years ago
• cilium / little-vm-helper-images

  View on GitHub
  ☆22Updated this week
• netdata / ebpf-co-re

  View on GitHub
  CO-RE code for the Netdata eBPF plugin.
  ☆16Updated this week
• linuxthor / rkbreaker

  View on GitHub
  Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes
  ☆12Sep 30, 2020Updated 5 years ago
• wdahlenburg / canary

  View on GitHub
  CLI tool written in Go to generate Canary Tokens from https://canarytokens.org
  ☆13Aug 22, 2025Updated 6 months ago
• mildsunrise / node_bpfcc

  View on GitHub
  🔬 BPF Compiler Collection (BCC) frontend for Node.js
  ☆21Mar 5, 2023Updated 3 years ago
• demetriusford / mutation-fuzzer

  View on GitHub
  TL;DR: Mutate a binary to identify potential exploit candidates
  ☆11Jan 12, 2026Updated last month
• Gui774ume / ebpfkit

  View on GitHub
  ebpfkit is a rootkit powered by eBPF
  ☆838Feb 28, 2023Updated 3 years ago
• dylandreimerink / edb

  View on GitHub
  An eBPF program debugger
  ☆215May 28, 2022Updated 3 years ago
• zebaz / xpress-dns

  View on GitHub
  Experimental XDP DNS server powered by eBPF
  ☆86Oct 4, 2021Updated 4 years ago
• eversinc33 / UnXorStringsNet

  View on GitHub
  Deobfuscation of XorStringsNet
  ☆14Nov 5, 2024Updated last year
• naftulikay / docker-ubuntu-kernel-build

  View on GitHub
  Build an Ubuntu Kernel in a Docker Container
  ☆14Feb 6, 2017Updated 9 years ago
• X-C3LL / memdlopen-lib

  View on GitHub
  ☆13Dec 29, 2022Updated 3 years ago
• nsmaciej / objc_rust

  View on GitHub
  Calling Objective-C libraries from Rust
  ☆13Sep 4, 2016Updated 9 years ago
• sandfs / SandFS-Kernel

  View on GitHub
  ☆17Mar 22, 2019Updated 6 years ago
• grantseltzer / libbpfgo-example

  View on GitHub
  ☆10Apr 8, 2022Updated 3 years ago
• cilium / coverbee

  View on GitHub
  Code coverage tooling for eBPF
  ☆39Jul 23, 2024Updated last year
• acassen / gtp-guard

  View on GitHub
  Mobile Core-Network routing software
  ☆43Feb 26, 2026Updated last week
• liumuqing / ridl_leak_kaslr

  View on GitHub
  ☆14Sep 26, 2021Updated 4 years ago
• dfrojas / bpfluga

  View on GitHub
  bpfluga is an agentless eBPF observability tool written in Go that deploys, manages, and detaches eBPF programs via SSH for deep kernel i…
  ☆16Mar 28, 2025Updated 11 months ago
• twevs / HighPCodeViewer

  View on GitHub
  Ghidra plugin that adds a window showing the high P-code for the current function.
  ☆19Mar 11, 2023Updated 2 years ago