redcanaryco/ebpfmon

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/redcanaryco/ebpfmon)

redcanaryco / ebpfmon

☆91

Alternatives and similar repositories for ebpfmon

Users that are interested in ebpfmon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

redcanaryco / redcanary-ebpf-sensor
View on GitHub
Red Canary's eBPF Sensor
☆115Apr 15, 2026Updated last month
maxgio92 / krawler
View on GitHub
A crawler for kernel releases distributed by the major Linux distributions.
☆13Oct 18, 2024Updated last year
DataDog / ebpf-manager
View on GitHub
This manager helps handle the life cycle of your eBPF programs
☆161Updated this week
florianl / go-diag
View on GitHub
c-binding free API for golang to communicate with the socket subsystem of netfilter
☆12Mar 14, 2026Updated 2 months ago
VolatileMindsLLC / metafang2
View on GitHub
Interfaces with a Metasploit RPC instance to generate .NET executables that run x86/x64 shell code in a platform-agnostic way. One binary…
☆24Sep 28, 2017Updated 8 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
zebaz / xpress-dns
View on GitHub
Experimental XDP DNS server powered by eBPF
☆85Oct 4, 2021Updated 4 years ago
CiscoCXSecurity / unix-audit
View on GitHub
Framework for generating audit commands for Unix security audits
☆66Aug 1, 2023Updated 2 years ago
elastic / bpfcov
View on GitHub
Source-code based coverage for eBPF programs actually running in the Linux kernel
☆138Feb 6, 2025Updated last year
hardenedvault / ved-ebpf
View on GitHub
VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
☆171Sep 7, 2024Updated last year
redcanaryco / oxidebpf
View on GitHub
A Rust library for managing eBPF programs.
☆122Feb 26, 2024Updated 2 years ago
netdata / ebpf-co-re
View on GitHub
CO-RE code for the Netdata eBPF plugin.
☆16May 19, 2026Updated last week
antitree / seccomp-diff
View on GitHub
☆87Mar 30, 2026Updated last month
taviso / hiewdocs
View on GitHub
Documentation and notes on using the Hiew editor.
☆18Mar 22, 2022Updated 4 years ago
quarkslab / peetch
View on GitHub
An eBPF playground
☆210Dec 12, 2023Updated 2 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
cilium / little-vm-helper-images
View on GitHub
☆23May 20, 2026Updated last week
Antonlovesdnb / DockerDetectionNotes
View on GitHub
Some of my rough notes for Docker threat detection
☆51Aug 26, 2023Updated 2 years ago
mdlayher / networkd
View on GitHub
Package networkd enables control of systemd-networkd using D-Bus. MIT Licensed.
☆17Aug 12, 2023Updated 2 years ago
bpfman / bpfman
View on GitHub
An eBPF Manager for Linux and Kubernetes
☆735Updated this week
wdahlenburg / canary
View on GitHub
CLI tool written in Go to generate Canary Tokens from https://canarytokens.org
☆13Aug 22, 2025Updated 9 months ago
mildsunrise / node_bpfcc
View on GitHub
🔬 BPF Compiler Collection (BCC) frontend for Node.js
☆21Mar 5, 2023Updated 3 years ago
cilium / coverbee
View on GitHub
Code coverage tooling for eBPF
☆41Jul 23, 2024Updated last year
ebpffoundation / publications
View on GitHub
Publications from the eBPF foundation
☆28Dec 3, 2025Updated 5 months ago
its-a-feature / loginItemManipulator
View on GitHub
☆15May 26, 2021Updated 5 years ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
meowmeowxw / kernel-exploits
View on GitHub
Kernel exploits and writeups
☆17May 11, 2022Updated 4 years ago
sandfs / SandFS-Kernel
View on GitHub
☆17Mar 22, 2019Updated 7 years ago
superevr / cve-2019-3398
View on GitHub
Python script to exploit confluence path traversal vulnerability cve-2019-3398
☆15Jun 6, 2019Updated 6 years ago
dylandreimerink / edb
View on GitHub
An eBPF program debugger
☆216May 28, 2022Updated 3 years ago
libbpf / libbpf-bootstrap
View on GitHub
Scaffolding for BPF application development with libbpf and BPF CO-RE
☆1,484Apr 9, 2026Updated last month
nsmaciej / objc_rust
View on GitHub
Calling Objective-C libraries from Rust
☆13Sep 4, 2016Updated 9 years ago
drjdaly / tuplemerge
View on GitHub
Reference implementation for the TupleMerge packet classifier
☆19Jan 24, 2019Updated 7 years ago
demetriusford / mutation-fuzzer
View on GitHub
TL;DR: Mutate a binary to identify potential exploit candidates
☆11Jan 12, 2026Updated 4 months ago
mrexodia / YaraGen
View on GitHub
Plugin for x64dbg to generate Yara rules from function basic blocks.
☆37Sep 2, 2017Updated 8 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
nyrahul / ebpf-guide
View on GitHub
Ebpf faqs, samples, tooling
☆45Jul 1, 2021Updated 4 years ago
docfate111 / CVE-2021-42327
View on GitHub
kernel exploit POC for vulnerability i found in amd gpu driver
☆10Jan 6, 2023Updated 3 years ago
ozpingux / BasicLinuxForensicScript
View on GitHub
Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
☆43Jul 5, 2023Updated 2 years ago
acassen / gtp-guard
View on GitHub
Mobile Core-Network routing software
☆49Apr 27, 2026Updated last month
cylance / eBPF_processor
View on GitHub
An IDA processor for eBPF bytecode
☆52Oct 13, 2021Updated 4 years ago
rkbennett / icmpsh
View on GitHub
Simple reverse ICMP shell
☆14Apr 30, 2024Updated 2 years ago
linuxthor / rkbreaker
View on GitHub
Rootkit breaker - experimental Linux anti-rootkit tool based on kprobes
☆12Sep 30, 2020Updated 5 years ago