eBPF is a technology that can run sandboxed programs in a privileged context such as the operating system kernel. It is used to safely and efficiently extend the capabilities of the kernel at runtime without requiring to change kernel source code or load kernel modules.
ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel
Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability
eBPF Developer Tutorial: Learning eBPF Step by Step with Examples
Userspace eBPF runtime for Observability, Network & General Extensions Framework
Build, Distribute and Run CO-RE eBPF programs easier with JSON and Webassembly OCI images
Hubble - Network, Service & Security Observability for Kubernetes using eBPF
The eBPF tool and systems inspection framework for Kubernetes, containers and Linux hosts
一个深挖 Linux 内核的新功能特性,以 io_uring, cgroup, ebpf, llvm 为代表,包含开源项目,代码案例,文章,视频,架构脑图等
The container platform tailored for Kubernetes multi-cloud, datacenter, and edge management ⎈ 🖥 ☁️
Real-time network & syscall monitoring tool for Linux systems and Kubernetes clusters
A simple, portable eBPF C program for analyzing and filtering network traffic on Linux
A high-level profiler for process-level events such as fork, exec, exit, setpgid, and setsid
A tool to render a pie chart of memory usage (bytes_memlock) of BPF maps on the system 🥧