Oryx is a terminal-based user interface tool that leverages eBPF on Linux to sniff and monitor network traffic in real-time.
🕵️♂️ TUI for sniffing network traffic using eBPF on Linux
Oryx is designed for security professionals and system administrators who need to monitor network traffic at a low level on Linux systems. It provides a lightweight, interactive TUI for real-time network sniffing using eBPF, enabling intrusion detection and network security automation without heavy dependencies.
Oryx requires Linux with eBPF support enabled in the kernel; running the tool may require elevated privileges initially to load eBPF programs. It is recommended to run on modern kernels (5.x or later) for best compatibility and performance.
Ensure you are running a Linux system with kernel support for eBPF
Install Rust toolchain (https://rustup.rs/) if not already installed
Clone the repository: git clone https://github.com/pythops/oryx.git
Navigate to the cloned directory: cd oryx
Build the project using Cargo: cargo build --release
Run the compiled binary from the target/release directory: ./target/release/oryx./oryx
Launches the Oryx TUI for interactive network sniffing
./oryx --help
Displays help information and available command-line options