Top' for Redis Using eBPF
eBPF hooks decrypt TLS Redis traffic without proxy or MONITOR command overhead.
Netstat for TLS
eBPF + OpenSSL uprobes capture plaintext at the one vantage point where it exists.
Security engineers and infrastructure developers debugging TLS issues
Wireshark · tcpdump · sslsplit
eBPF hooks decrypt TLS Redis traffic without proxy or MONITOR command overhead.
Nice visual breakdown of the handshake, but sslscan and testssl.sh already do this better.
Defense-in-depth AI agent firewall: proxy + eBPF kernel + three-tier injection detection.
eBPF kernel tracing lets you sniff Wi-Fi without monitor mode or disconnecting.
Uses EdDSA signatures to smuggle arbitrary bytes through TLS handshakes — a classic subliminal-channel trick applied to modern TLS code. The repo includes an actual client/server PoC (https_client.c, https_server.c), a cert generation script, and a bundled wolfSSL build so you can reproduce the experiment. Clever demo, but it reads like research code rather than a hardened tool: there's little on threat modelling, detection, or performance trade-offs.
eBPF-based USB sniffer bypasses usbmon entirely using universal URB hooks for zero-setup debugging.