Why I'm OBSESSED With eBPF

An introduction to this powerful Linux kernel technology, that I think is the future of endpoint security! 0:00 Intro 1:15 The Name 2:28 Why It's Cool 3:32 Setup 6:52 BPFTrace one-liners 8:59 How It Works 11:38 Writing eBPF Programs 20:13 BlueBPF Intro 20:52 BPF Keylogger 22:43 SSHSpy 25:30 ShellGuardian 28:14 Going Further Resources Join our Discord! https://discord.gg/taggartinstitute BCC: https://github.com/iovisor/bcc BPFTrace: https://github.com/iovisor/bpftrace BlueBPF: https://github.com/mttaggart/bluebpf Kunai: https://github.com/0xrawsec/kunai