A thinking Meat

A thinking Meat

A thinking Meat

A thinking Meat
•
cilium.io
•
2M
•

Cilium Standalone Layer 4 Load Balancer XDP

The screenshots speak for themselves, but the key take away for us was, L4LB XDP at the driver layer with a majority of HTTP traffic (~90% of our traffic is HTTP requests) saves us an unbelievable amount of CPUs needed to handle our production traffic.

Cilium Standalone Layer 4 Load Balancer XDP

A thinking Meat
•
cilium.io
•
2M
•

bpf

Why You Should Pay Attention to eBPF

Why You Should Pay Attention to eBPF

Cilium Standalone Layer 4 Load Balancer XDP

Cilium Standalone Layer 4 Load Balancer XDP

GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

eBPF, sidecars, and the future of the service mesh

eBPF, sidecars, and the future of the service mesh

Bpf based tools are picking up speed

Bpf based tools are picking up speed

GitHub - kris-nova/xpid: Linux Process Discovery. C Library, Go bindings, Runtime.

GitHub - kris-nova/xpid: Linux Process Discovery. C Library, Go bindings, Runtime.

GitHub - kris-nova/boopkit: Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

GitHub - kris-nova/boopkit: Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

BPFDoor — an active Chinese global surveillance tool

BPFDoor — an active Chinese global surveillance tool

DEF CON 29 - PatH - Warping Reality: Creating and Countering the Next Generation of Linux Rootkits

DEF CON 29 - PatH - Warping Reality: Creating and Countering the Next Generation of Linux Rootkits

bpf

bpf

Why You Should Pay Attention to eBPFplus-square

Why You Should Pay Attention to eBPFplus-square

Cilium Standalone Layer 4 Load Balancer XDPplus-square

Cilium Standalone Layer 4 Load Balancer XDPplus-square

GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.plus-square

GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.plus-square

eBPF, sidecars, and the future of the service meshplus-square

eBPF, sidecars, and the future of the service meshplus-square

Bpf based tools are picking up speedplus-square

Bpf based tools are picking up speedplus-square

GitHub - kris-nova/xpid: Linux Process Discovery. C Library, Go bindings, Runtime.plus-square

GitHub - kris-nova/xpid: Linux Process Discovery. C Library, Go bindings, Runtime.plus-square

GitHub - kris-nova/boopkit: Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.plus-square

GitHub - kris-nova/boopkit: Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.plus-square

BPFDoor — an active Chinese global surveillance toolplus-square

BPFDoor — an active Chinese global surveillance toolplus-square

DEF CON 29 - PatH - Warping Reality: Creating and Countering the Next Generation of Linux Rootkitsplus-square

DEF CON 29 - PatH - Warping Reality: Creating and Countering the Next Generation of Linux Rootkitsplus-square

bpf

Why You Should Pay Attention to eBPF

Why You Should Pay Attention to eBPF

Cilium Standalone Layer 4 Load Balancer XDP

Cilium Standalone Layer 4 Load Balancer XDP

GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

GitHub - h3xduck/TripleCross: A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.

eBPF, sidecars, and the future of the service mesh

eBPF, sidecars, and the future of the service mesh

Bpf based tools are picking up speed

Bpf based tools are picking up speed

GitHub - kris-nova/xpid: Linux Process Discovery. C Library, Go bindings, Runtime.

GitHub - kris-nova/xpid: Linux Process Discovery. C Library, Go bindings, Runtime.

GitHub - kris-nova/boopkit: Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

GitHub - kris-nova/boopkit: Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

BPFDoor — an active Chinese global surveillance tool

BPFDoor — an active Chinese global surveillance tool

DEF CON 29 - PatH - Warping Reality: Creating and Countering the Next Generation of Linux Rootkits

DEF CON 29 - PatH - Warping Reality: Creating and Countering the Next Generation of Linux Rootkits