Our great sponsors
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
I've embarked on the journey of making fibratus capable of instrumenting and tracing the Linux kernels. As some of you might anticipate, the backbone of the tracing capabilities will piggy back on the revolutionary ebpf technology. It is a safe and efficient way of running a sandboxed bytecode at various hook points in the kernel. I've opted for using the raw tracepoints on the syscall exit events. The main workflow consisting of building, loading and installing the tracepoint is already implemented. Nevertheless, there is still a lot of work ahead. The following is the GitHub branch where the Linux support development is happening:
Related posts
- Announcing Fibratus 2.0.0
- Announcing Fibratus 1.10.0 - a modern Windows kernel tracing and threat detection engine
- Fibratus 1.10.0 - a modern Windows kernel tracing and threat detection engine built in Go
- Release v1.10.0 ยท Fibratus
- Announcing fibratus 1.10.0 - a modern Windows kernel tracing and threat detection engine