An introduction to this powerful Linux kernel technology, that I think is the future of endpoint security!
0:00 Intro
1:15 The Name
2:28 Why It's Cool
3:32 Setup
6:52 BPFTrace one-liners
8:59 How It Works
11:38 Writing eBPF Programs
20:13 BlueBPF Intro
20:52 BPF Keylogger
22:43 SSHSpy
25:30 ShellGuardian
28:14 Going Further
Resources
Join our Discord! https://discord.gg/taggartinstitute
BCC: https://github.com/iovisor/bcc
BPFTrace: https://github.com/iovisor/bpftrace
BlueBPF: https://github.com/mttaggart/bluebpf
Kunai: https://github.com/0xrawsec/kunai