eBPF-IDS

This is the repository for Project eBPF-IDS, which aims to provide pattern matching with eBPF. It can filter malicious packets before they arrive at linux kernel, thus providing significant performance boost.

Create an alias for testenv.sh

eval $(./testenv/testenv.sh alias)

Requirements

sudo apt install clang llvm libelf-dev gcc-multilib python-dev

pip install pyahocorasick

Run the code

Please refer to examples under xdp-tutorial and our eBPF-IDS runs in a very similar way.

make

sudo ./xdp_loader --force --progsec xdp_ids -s 0:xdp_dpi -d [ifname]

sudo ./xdp_prog_user -d [ifname]

Name		Name	Last commit message	Last commit date
Latest commit History 66 Commits
common		common
ebpf		ebpf
patterns		patterns
testenv		testenv
.editorconfig		.editorconfig
.gitignore		.gitignore
Makefile		Makefile
README.md		README.md
common_kern_user.h		common_kern_user.h
xdp_prog_kern.c		xdp_prog_kern.c
xdp_prog_user.c		xdp_prog_user.c

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

eBPF-IDS

Create an alias for testenv.sh

Requirements

Run the code

About

Releases

Packages

Contributors 2

Languages

zhangmenghao/eBPF-IDS

Folders and files

Latest commit

History

Repository files navigation

eBPF-IDS

Create an alias for testenv.sh

Requirements

Run the code

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages