eBPF is a technology that can run sandboxed programs in a privileged context such as the operating system kernel. It is used to safely and efficiently extend the capabilities of the kernel at runtime without requiring to change kernel source code or load kernel modules.
Cilium 为基于Kubernetes 的Linux 容器管理平台上部署的服务,透明地提供服务间的网络和API 连接及安全。 Cilium 底层是基于Linux 内核的新技术eBPF,可以在Linux 系统中动态注入强大的安全性、可见性和网络控制逻辑
#安卓#ecapture 是一款无需安装CA证书,即可抓取HTTPS、TLS等明文数据包的工具。也可以捕捉bash的命令,适用于安全审计场景。包括mysqld的数据审计等。
Cloud Native Runtime Security
翻译 - 云原生运行时安全
Cloud native networking and network security
翻译 - 云原生网络和网络安全
#计算机科学#Instant Kubernetes-Native Application Observability
翻译 - Instant Kubernetes-Native Application Observability
eBPF-based Security Observability and Runtime Enforcement
Hubble - Network, Service & Security Observability for Kubernetes using eBPF
翻译 - 哈勃-Kubernetes的网络,服务和安全性可观察性
eBPF-based Linux high-performance transparent proxy solution.
Distributed tracing without code changes. 🚀 Instantly monitor any application using OpenTelemetry and eBPF
eBPF distributed networking observability tool for Kubernetes
eBPF Developer Tutorial: Learning eBPF Step by Step with Examples
Visualize the time packets spend in the kernel, analyze requests/responses in command line.
The production-scale datacenter profiler (C/C++, Go, Rust, Python, Java, NodeJS, .NET, PHP, Ruby, Perl, ...)
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF