|
|
|
|
|
|
by s4mw1se
699 days ago
|
|
|
not a ebpf expert, just been on my radar lately because i’m going through a sysdig poc. To me It feels more like a reverse proxy for intercepting traffic going between user land and kernel space. As we move to k8s and classic EDR isn’t feasible i 100% understand the need. It still feels like a dumb thing humanity has done and will blow up in our face after having the kernel / user space security boundary beat into our heads for so long. |
|
|