Summary
This is an open source eBPF-based network monitor and blocker for Linux, written in Rust with the Aya framework. It intercepts network connections at the kernel level using TC classifiers and LSM hooks, then shares data with user space via eBPF maps. You load blocklists from text files (IPs and domain suffixes), and the demo runner populates the maps and reads connection events back out. The architecture is clean: an ebpf crate for kernel programs, a common crate for shared types, and a demo runner that ties it all together. Requires kernel 5.15+ and root privileges. This is the open core of Objective Development's Little Snitch for Linux, so you get the monitoring primitives but not the full UI or rule engine.
Install to Claude Code
npx -y skills add aradotso/trending-skills --skill littlesnitch-linux --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →First SeenJun 3, 2026
