This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove ebpf-tracing-containers
article thumbnail

Technical Review: A Deep Analysis of the Dirty Pipe Vulnerability

Aqua Security

DECEMBER 14, 2022

An application of this vulnerability would be to write on the host from an unprivileged container. In this blog we’ll show how Tracee, which is designed with a deep understanding of the Linux kernel, allows for runtime monitoring when this vulnerability would be exploited.

Technical Review 145
Technical Review Analysis Linux Programming 145
article thumbnail

The Story of Tracee: The Path to Runtime Security Tool

Aqua Security

OCTOBER 7, 2021

eBPF technology is seeing strong growth, being widely adopted in the cloud native ecosystem for monitoring, networking, and security goals. At Aqua, along with being used in commercial products, eBPF powers our open source project Tracee to detect events in running containers.

Open Source 118
Open Source Tools Network Cloud 118
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

Tracee: Tracing Containers with eBPF

Aqua Security

NOVEMBER 6, 2019

T his week at Velocity Berlin, I’ll be giving a talk called A Beginner’s Guide to eBPF. To coincide with it, we’re opening up a new Aqua Security open source project called Tracee , which uses eBPF to trace events in containers.

Open Source 16
Open Source Tools Development Cloud 16
article thumbnail

Threat detection and response tools are built on shaky foundations, leaving your cloud workloads at risk

Lacework

OCTOBER 6, 2022

There are several ways to detect threats using system call (syscall) and kernel tracing in Linux. Different deployment models for tracing programs. Based on the monitoring mechanisms, tracing programs can be deployed as kernel modules, eBPF programs, or user space programs. . The Shaky Foundation. The Shaky Foundation.

Linux 52
Linux Cloud Tools Storage 52
article thumbnail

Radar trends to watch: October 2021

O'Reilly Media - Ideas

OCTOBER 5, 2021

Is self-healing cybersecurity possible by killing affected containers and starting new ones? Rootkits are hardly new, but now they’re being used to attack containers. Tracee is a new tool, built with eBPF, that may help to detect successful attacks. It integrates with Amazon products like Ring and Alexa Guard.

Trends 123
Trends Open Source Artificial Inteligence Study 123
article thumbnail

eBPF Explained: Why it's Important for Observability

Kentik

APRIL 3, 2023

eBPF is a lightweight runtime environment that gives you the ability to run programs inside the kernel of an operating system, usually a recent version of Linux. In this post, we’ll look at what eBPF is, how it works, and why it’s become such a common technology in observability. What is eBPF? How does eBPF work?

Programming 110
Programming Load Balancer Linux Network 110
article thumbnail

Netflix at AWS re:Invent 2019

Netflix Tech

NOVEMBER 22, 2019

December 3 11:30am-12:30pm NFX 208 Netflix’s container journey to bare metal Amazon EC2 Andrew Spyker , Compute Platform Engineering Manager Abstract : In 2015, Netflix started supporting containers as part of their compute platform. It launches more than four million containers per week across thousands of underlying hosts.

AWS 15
AWS Open Source Linux Engineering Management 15
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 48,000+ Insiders by signing up for our newsletter

About
Webinars
Awards
About
Editions
Webinars
Awards
Editions
Topics
LinkedIn Twitter
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024