├── .dockerignore ├── .gitignore ├── CHANGELOG.md ├── CMakeLists.txt ├── Dockerfile-ubuntu-2010 ├── LICENSE ├── PKGBUILD ├── README.md ├── bpf_wrapper.cpp ├── bpf_wrapper.hpp ├── connection_manager.cpp ├── connection_manager.hpp ├── control_api.cpp ├── control_api.hpp ├── dns_cache.cpp ├── dns_cache.hpp ├── dns_parser.cpp ├── dns_parser.hpp ├── ebpf_event.hpp ├── ebpfsnitch_daemon.cpp ├── ebpfsnitch_daemon.hpp ├── ebpfsnitchd.service ├── lru_map.hpp ├── main.cpp ├── misc.cpp ├── misc.hpp ├── nfq_event.h ├── nfq_wrapper.cpp ├── nfq_wrapper.hpp ├── probes.c ├── process_manager.cpp ├── process_manager.hpp ├── rule_engine.cpp ├── rule_engine.hpp ├── screenshot.png ├── stopper.cpp ├── stopper.hpp ├── tests ├── lru_map_test.cpp └── stopper_test.cpp └── ui ├── MANIFEST.in ├── bin └── ebpfsnitch ├── ebpfsnitch ├── __init__.py ├── ebpfsnitch.png └── entry.py └── setup.py /.dockerignore: -------------------------------------------------------------------------------- 1 | build -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | main 2 | build -------------------------------------------------------------------------------- /CHANGELOG.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/CHANGELOG.md -------------------------------------------------------------------------------- /CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/CMakeLists.txt -------------------------------------------------------------------------------- /Dockerfile-ubuntu-2010: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/Dockerfile-ubuntu-2010 -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/LICENSE -------------------------------------------------------------------------------- /PKGBUILD: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/PKGBUILD -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/README.md -------------------------------------------------------------------------------- /bpf_wrapper.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/bpf_wrapper.cpp -------------------------------------------------------------------------------- /bpf_wrapper.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/bpf_wrapper.hpp -------------------------------------------------------------------------------- /connection_manager.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/connection_manager.cpp -------------------------------------------------------------------------------- /connection_manager.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/connection_manager.hpp -------------------------------------------------------------------------------- /control_api.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/control_api.cpp -------------------------------------------------------------------------------- /control_api.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/control_api.hpp -------------------------------------------------------------------------------- /dns_cache.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/dns_cache.cpp -------------------------------------------------------------------------------- /dns_cache.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/dns_cache.hpp -------------------------------------------------------------------------------- /dns_parser.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/dns_parser.cpp -------------------------------------------------------------------------------- /dns_parser.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/dns_parser.hpp -------------------------------------------------------------------------------- /ebpf_event.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/ebpf_event.hpp -------------------------------------------------------------------------------- /ebpfsnitch_daemon.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/ebpfsnitch_daemon.cpp -------------------------------------------------------------------------------- /ebpfsnitch_daemon.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/ebpfsnitch_daemon.hpp -------------------------------------------------------------------------------- /ebpfsnitchd.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/ebpfsnitchd.service -------------------------------------------------------------------------------- /lru_map.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/lru_map.hpp -------------------------------------------------------------------------------- /main.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/main.cpp -------------------------------------------------------------------------------- /misc.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/misc.cpp -------------------------------------------------------------------------------- /misc.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/misc.hpp -------------------------------------------------------------------------------- /nfq_event.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/nfq_event.h -------------------------------------------------------------------------------- /nfq_wrapper.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/nfq_wrapper.cpp -------------------------------------------------------------------------------- /nfq_wrapper.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/nfq_wrapper.hpp -------------------------------------------------------------------------------- /probes.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/probes.c -------------------------------------------------------------------------------- /process_manager.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/process_manager.cpp -------------------------------------------------------------------------------- /process_manager.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/process_manager.hpp -------------------------------------------------------------------------------- /rule_engine.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/rule_engine.cpp -------------------------------------------------------------------------------- /rule_engine.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/rule_engine.hpp -------------------------------------------------------------------------------- /screenshot.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/screenshot.png -------------------------------------------------------------------------------- /stopper.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/stopper.cpp -------------------------------------------------------------------------------- /stopper.hpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/stopper.hpp -------------------------------------------------------------------------------- /tests/lru_map_test.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/tests/lru_map_test.cpp -------------------------------------------------------------------------------- /tests/stopper_test.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/tests/stopper_test.cpp -------------------------------------------------------------------------------- /ui/MANIFEST.in: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/ui/MANIFEST.in -------------------------------------------------------------------------------- /ui/bin/ebpfsnitch: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python3 2 | 3 | from ebpfsnitch import entry -------------------------------------------------------------------------------- /ui/ebpfsnitch/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /ui/ebpfsnitch/ebpfsnitch.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/ui/ebpfsnitch/ebpfsnitch.png -------------------------------------------------------------------------------- /ui/ebpfsnitch/entry.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/ui/ebpfsnitch/entry.py -------------------------------------------------------------------------------- /ui/setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/harporoeder/ebpfsnitch/HEAD/ui/setup.py --------------------------------------------------------------------------------