redcanary-ebpf-sensor

Event collector

A collection of eBPF applications designed to gather system events for a Linux EDR solution

Red Canary's eBPF Sensor

101 stars

24 watching

14 forks

Language: C

last commit: 8 months ago

Linked from 1 awesome list

ebpfedr-solutionssensor

Backlinks from these awesome lists:

zoidyzoidzoid/awesome-ebpf

Related projects:

Repository	Description	Stars
redcanaryco/ebpfmon	Tool for monitoring and inspecting eBPF programs on Linux systems	85
redcanaryco/mac-monitor	An advanced system monitoring tool designed to collect and enrich system events for macOS security research and analysis.	966
cloudflare/ebpf_exporter	An exporter for collecting custom eBPF metrics and OpenTelemetry traces from Linux kernel programs	2,226
gui774ume/ebpfkit-monitor	A tool designed to detect and protect against certain types of malicious eBPF bytecode	125
olcf/greggd	A daemon that compiles and runs eBPF programs in the kernel to collect data on system events	6
vbpf/ebpf-samples	This repository provides a collection of sample eBPF programs for analysis and testing purposes.	90
fzakaria/ebpf-mpls-encap-decap	Demonstrates packet encapsulation and decapsulation with MPLS labels using eBPF	54
kindlingproject/kindling	An eBPF-based monitoring tool for Kubernetes applications.	1,132
eunomia-bpf/eunomia-bpf	A toolchain to simplify building and running eBPF programs with CO-RE and WebAssembly support	687
vbpf/ebpf-verifier	A tool that verifies the correctness of eBPF programs using an abstract interpretation approach	392
iovisor/ubpf	An eBPF VM that allows userspace execution of eBPF programs in a Linux kernel-independent way.	841
iomartin/ubpf	An eBPF VM implementation in C	0
qmonnet/rbpf	An eBPF program interpreter and JIT compiler written in Rust.	952
aquasecurity/libbpfgo	A Go library providing an interface to eBPF programs from userspace	748
raystack/raccoon	A high-throughput service for collecting and publishing event data in real-time from various sources using multiple network protocols.	200