| Yeah the keyword is so hyped by SEO blog article writers, it's ridiculous. I am building an eBPF firewall for a couple weeks now and am still in the learning process, but finding articles that actually teach you how to implement something is so ridiculously hard. I've seen more crappy execve hooks that don't compile than anything useful. The demos of XDP project that are less than 4 weeks old don't even compile. Took me a long while to get there, and now I am stuck with bytecode parser problems (am assuming I am using an invalid pointer of sorts, results in invalid scalar which could be anything). The response of the bpftool guy was basically to learn the bytecode format. So here I am, learning the bytecode format to write a C program. In 2023. In case anyone wants to help build a DNS filter and execve hooks to detect suspicious activity: [1] (Yeah yeah shitty C code, I know) [1] https://github.com/cookiengineer/ebpf-firewall |