redcanary-ebpf-sensor

Event collector

A collection of eBPF applications designed to gather system events for a Linux EDR solution

Red Canary's eBPF Sensor

101 stars

24 watching

14 forks

Language: C

last commit: 5 months ago

Linked from 1 awesome list

ebpfedr-solutionssensor

Backlinks from these awesome lists:

zoidyzoidzoid/awesome-ebpf

Related projects:

Repository	Description	Stars
redcanaryco/ebpfmon	Tool for monitoring and inspecting eBPF programs on Linux systems	84
redcanaryco/mac-monitor	An advanced system monitoring tool designed to collect and enrich system events for macOS security research and analysis.	941
cloudflare/ebpf_exporter	An exporter for collecting custom eBPF metrics and OpenTelemetry traces from Linux kernel programs	2,200
gui774ume/ebpfkit-monitor	A tool designed to detect and protect against certain types of malicious eBPF bytecode	123
olcf/greggd	A daemon that compiles and runs eBPF programs in the kernel to collect data on system events	6
vbpf/ebpf-samples	This repository provides a collection of sample eBPF programs for analysis and testing purposes.	91
fzakaria/ebpf-mpls-encap-decap	Demonstrates packet encapsulation and decapsulation with MPLS labels using eBPF	53
kindlingproject/kindling	An eBPF-based monitoring tool for Kubernetes applications.	1,122
eunomia-bpf/eunomia-bpf	A toolchain to simplify building and running eBPF programs with CO-RE and WebAssembly support	681
vbpf/ebpf-verifier	A tool that verifies the correctness of eBPF programs using an abstract interpretation approach	391
iovisor/ubpf	An eBPF VM that allows userspace execution of eBPF programs in a Linux kernel-independent way.	832
iomartin/ubpf	An eBPF VM implementation in C	0
qmonnet/rbpf	An eBPF program interpreter and JIT compiler written in Rust.	943
aquasecurity/libbpfgo	A Go library providing an interface to eBPF programs from userspace	736
raystack/raccoon	A high-throughput service for collecting and publishing event data in real-time from various sources using multiple network protocols.	199