eBPF Warfare - Detecting Kernel & eBPF Rootkits with Tracee


Posted on in Presentations

eBPF is uncharted territory in terms of malicious activity detection. As threats continue to emerge, it’s time to get proactive. Attendees will learn about the different types of rootkits, their attack flow, how they operate and how to detect them. Lastly, they will learn how to use Tracee, an open-source tool harnessing eBPF to detect those threats and gain an advantage on the attackers.


Participants
Asaf Eitani

Speaker

Cyber Security Researcher, Aqua Security

Idan Revivo

Speaker

VP, Cyber Security Research, Aqua Security


Share With Your Community