tarsal-oss / kflowdLinks
Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG Application Messages via eBPF Subsystem
☆67Updated 4 months ago
Alternatives and similar repositories for kflowd
Users that are interested in kflowd are comparing it to the libraries listed below
Sorting:
- TC, XDP, KProbe and CGroup eBPF based simple Ethernet interface traffic monitor and reporting tool☆116Updated last week
- ☆89Updated last year
- bpflock - eBPF driven security for locking and auditing Linux machines☆149Updated 3 years ago
- 🐝 Ransomware Detection using Machine Learning with eBPF for Linux.☆68Updated 8 months ago
- Measure UDP and TCP connection latency for IPv4 and IPv6 using eBPF and Go☆71Updated last week
- Use eBPF to inject chaos into local processes☆65Updated 11 months ago
- monitor and protect SSH sessions with eBPF☆70Updated 4 years ago
- An EBPF based IPv4/IPv6 firewall with integrations for OpenZiti Zero-Trust Framework edge-routers and tunnellers☆68Updated 2 weeks ago
- Kit for building Falco drivers: kernel modules or eBPF probes☆66Updated this week
- Inspect SSL/TLS traffic using eBPF☆19Updated 10 months ago
- Deep Linux runtime visibility meets Wireshark☆292Updated last month
- Elastic's eBPF☆69Updated last week
- Real-time eBPF-powered network security monitor with AI-driven threat detection. Surfaces port scans, DDoS attacks, botnet activity, and …☆46Updated last week
- A toy containers aware firewall built in Rust☆23Updated 2 years ago
- Red Canary's eBPF Sensor☆109Updated 2 months ago
- ☆82Updated last month
- Falco rule repository☆132Updated last month
- VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities☆102Updated 10 months ago
- 🔍 Seccomp profiling and function-level tracing tool.☆160Updated 2 months ago
- Simple root privilege escalation detection using eBPF 🐝☆13Updated 6 months ago
- Publications from the eBPF foundation☆26Updated 9 months ago
- proof-of-concept example of using eBPF to Monitor for eBPF Map tampering☆22Updated 4 years ago
- eBPF Programs☆63Updated last month
- Ingress node firewall implements Kubernetes operator to provision stateless ingress node level firewall rules, stateless ingress node fir…☆62Updated last week
- Demo repository for running eBPF in GitHub Actions☆22Updated 4 months ago
- eBPF-Direct is a high-performance serverless execution layer that runs functions directly inside the Linux kernel using eBPF☆28Updated 4 months ago
- Intent driven security automation framework☆26Updated 2 weeks ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆106Updated 2 months ago
- Process behaviour anomaly detection using eBPF and unsupervised-learning Autoencoders☆131Updated 3 years ago
- A convenience tool to generate and store certificates for Hubble Relay mTLS☆27Updated last week