An introduction to this powerful Linux kernel technology, that I think is the future of endpoint security!

0:00 Intro 1:15 The Name 2:28 Why It's Cool 3:32 Setup 6:52 BPFTrace one-liners 8:59 How It Works 11:38 Writing eBPF Programs 20:13 BlueBPF Intro 20:52 BPF Keylogger 22:43 SSHSpy 25:30 ShellGuardian 28:14 Going Further

Resources

Join our Discord! https://discord.gg/taggartinstitute

BCC: https://github.com/iovisor/bcc BPFTrace: https://github.com/iovisor/bpftrace BlueBPF: https://github.com/mttaggart/bluebpf Kunai: https://github.com/0xrawsec/kunai