has anyone played around with ebpf? The feed of exec() and open() calls seems quite useful from a security monitoring perspective

Follow

@jerry
Only read about it so far. I have been thinking to start playing with Falco.

Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.