Alternatives and similar repositories for zpoline:

Users that are interested in zpoline are comparing it to the libraries listed below

• anakryiko / retsnoop
  Investigate kernel error call stacks
  ☆232Updated 3 months ago
• vbpf / ebpf-verifier
  eBPF verifier based on abstract interpretation
  ☆404Updated this week
• mebeim / systrack
  📡🐧 Linux kernel syscall implementation tracker
  ☆206Updated 2 weeks ago
• eunomia-bpf / bpftime
  Userspace eBPF runtime for Observability, Network & General Extensions Framework
  ☆897Updated this week
• akawashiro / sloader
  sloader is an ELF loader which aims to replace ld-linux.so of glibc.
  ☆148Updated last year
• ilammy / ftrace-hook
  Using ftrace for function hooking in Linux kernel
  ☆265Updated 3 years ago
• mebeim / linux-syscalls
  🌐🐧 Browsable Linux kernel syscall tables built with Systrack (https://github.com/mebeim/systrack)
  ☆163Updated 2 weeks ago
• pathtofile / bad-bpf
  A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
  ☆580Updated 7 months ago
• libbpf / blazesym
  blazesym is a library for address symbolization and related tasks
  ☆142Updated this week
• iovisor / ubpf
  Userspace eBPF VM
  ☆862Updated this week
• KVM-VMI / kvm-vmi
  KVM-based Virtual Machine Introspection
  ☆323Updated 3 months ago
• dylandreimerink / edb
  An eBPF program debugger
  ☆200Updated 2 years ago
• GJDuck / e9patch
  A powerful static binary rewriting tool
  ☆1,006Updated 3 weeks ago
• MarginResearch / cannoli
  High-performance QEMU memory and instruction tracing
  ☆538Updated 6 months ago
• FlorentRevest / linux-kernel-vscode
  Reference setup for Linux kernel development in VSCode
  ☆225Updated last month
• pmem / syscall_intercept
  The system call intercepting library
  ☆641Updated last month
• bobuhiro11 / gokvm
  KVM based tiny x86 hypervisor written in pure golang, which can boot Linux
  ☆222Updated 6 months ago
• eunomia-bpf / llvmbpf
  Userspace eBPF VM with llvm JIT/AOT compiler
  ☆60Updated 5 months ago
• arighi / virtme-ng
  Quickly build and run kernels inside a virtualized snapshot of your live system
  ☆509Updated last week
• milabs / khook
  Linux Kernel hooking engine (x86)
  ☆339Updated 2 months ago
• pathtofile / bpf-hookdetect
  Dectect syscall hooking using eBPF
  ☆145Updated last year
• anakryiko / bpf-ringbuf-examples
  Examples of using BPF ring buffer APIs
  ☆122Updated 4 years ago
• yasukata / iip
  iip: an integratable TCP/IP stack
  ☆72Updated 2 months ago
• vbpf / ebpf-samples
  Sample ebpf programs to analyze
  ☆90Updated 2 months ago
• intel / libipt
  libipt - an Intel(R) Processor Trace decoder library
  ☆675Updated last month
• misc0110 / PTEditor
  A small library to modify all page-table levels of all processes from user space for x86_64 and ARMv8.
  ☆249Updated 3 months ago
• wkz / kmemd
  Explore a live Linux kernel's memory using GDB
  ☆113Updated 2 years ago
• lorenzo-stoakes / linux-mm-notes
  Succinct notes on the linux mm subsystem.
  ☆99Updated 2 years ago
• martinradev / gdb-pt-dump
  ☆152Updated last month
• libbpf / bpftool
  Automated upstream mirror for bpftool stand-alone build.
  ☆464Updated 3 weeks ago