This presentation was recorded at GOTOpia February 2021. #GOTOcon #GOTOpia Liz Rice - VP of Open Source Engineering at Aqua Security @lizrice5029 ABSTRACT eBPF has been described as “Superpowers for Linux,” and recently we’ve seen an explosion of tools that use it to power observability, security and more. It's an exciting technology that enables running bespoke programs directly in the kernel. In this talk Liz uses live-coding examples to explore how eBPF programs are loaded and run in the kernel, and how user-space code can communicate with them to extract [...] TIMECODES 00:00 Intro 01:05 What is eBPF? 04:34 Eyplore bpf syscalls in bpftrace 04:39 demo 06:43 eBPF programs & maps 09:56 Attach custom code to an event 10:35 demo 11:39 How to write eBPF hello world? 14:50 eBPF hello world 14:58 demo 24:40 eBPF maps 25:37 demo 31:55 Recreate bpftrace command 32:05 demo 34:48 Outro Download slides and read the full abstract here: RECOMMENDED BOOKS Liz Rice • Learning eBPF • Liz Rice • Container Security • Liz Rice • Kubernetes Security • Calavera & Fontana • Linux Observability with BPF • Brendan Gregg • BPF Performance Tools • Brendan Gregg • Systems Performance • Aaron Parecki • OAuth 2.0 Simplified • Aaron Parecki • OAuth 2.0 Servers • Aaron Parecki • The Little Book of OAuth 2.0 RFCs • Erdal Ozkaya • Cybersecurity: The Beginner's Guide • Richer & Sanso • OAuth 2 in Action • Wilson & Hingnikar • Demystifying OAuth 2.0, OpenID Connect, and SAML 2.0 • #eBPF #BPF #ExtendedBPF #Observability #Linux #GoLang #Kernel #BerkeleyPacketFilters #Demo #eBPFdemo #LizRice CHANNEL MEMBERSHIP BONUS Join this channel to get early access to videos & other perks: Looking for a unique learning experience? Attend the next GOTO conference near you! Get your ticket at Sign up for updates and specials at SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily.