Found 146 repositories(showing 30)
Esonhugh
/root/.ssh/authorized_keys evil file watchdog with ebpf tracepoint hook.
bpfsnoop
Modernized kernel functions, kernel tracepoints and bpf progs tracing tool for the bpf era.
trailofbits
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
fuweid
Provide task runtime implementation with pidfd and eBPF sched_process_exit tracepoint to manage deamonless container with low overhead.
Asphaltt
Learn something interesting by examples.
smcdef
kprobes template
baweaver
[ALPHA] TraceSpy is a wrapper around TracePoint with some extra pattern matching magic
microsoft
C/C++ libraries for working with Linux Tracepoints and user_events
harvie1208
android 全埋点数据采集gradle插件(字节码插桩,支持androidx)
carlosdanielpohlod
A formatted output of all methods called in your rails application of code created by the developer, with the complete path to the class/module, including passed params.
Synarcs
Advanced kernel-native security framework to disrupt and prevent DNS-based breaches including C2 channels and tunneling with zero data loss. Combines TC, Netfilter, raw socket interception, BPF maps, and ring buffers, runs entirely on eBPF in the Linux kernel. Integrates with deep learning for advanced intelligent EDR
niclashedam
An example of an eBPF program hooking into the kill tracepoint
yifengyou
eBPF学习
dalehamel
Static tracepoints primitives and extensions for the ruby language
microsoft
Rust libraries for Linux Tracepoints and user_events
mfontanini
Inspect socketaddrs using eBPF tracepoints
charpercyr
Dynamic tracing in Linux using fast tracepoints
GiuseppeCesarano
A modern causal profiler built leveraging Linux tracepoints
alessandrod
No description available
rubyunworks
Beyond #set_trace_func
tier4
Library to add tracepoints for CARET
kmcallister
Demo of self-modifying code in quasi-C
microsoft
.NET libraries for Linux Tracepoints and user_events
twitter-archive
Perf tracepoint support for the JVM
boroskoyo
send your collected tracepoint & logpoint events to Elasticsearch
AlSch092
Examples of EPT hooking & tracepoints using the `hv` hypervisor project
AndreaGuarracino
Compressed alignment representation
hparadiz
A zero-overhead CLI tool for capturing stdout/stderr output from a running process (and optionally its entire descendant tree) using eBPF tracepoints. Useful for attaching to processes that have already started, that redirect their output to `/dev/null`, that are buried inside a service manager, or that you simply don't want to restart.
bgamari
A library for introducing USDT tracepoints into Haskell programs
dobrinov
Lightweight Ruby profiler using Ruby's TracePoint API