Tutorial: Getting Familiar with Security Observability Using eBPF and Cilium Tetragon
May 01, 2023
1h 12m
Free
ebpf
cilium-tetragon
security-observability
kubernetes
linux-kernel
system-calls
container-security
network-security
cilium
observability
runtime-security
kernel-programming
Description
This tutorial introduces security observability using eBPF and Cilium Tetragon. It covers the fundamentals of Cilium Tetragon, its data extraction and enforcement capabilities, and how to monitor and identify critical activities. The session includes a deep dive into network connections and associated events, enabling attendees to better understand what data and activity to monitor for preventing malicious events and detecting container escapes.