Comment by yjftsjthsd-h
2 days ago
> As post explores eBPF-based tool
What ebpf-based tool(s)? It looks like it's just sample code to open a socket to a CRI.
2 days ago
> As post explores eBPF-based tool
What ebpf-based tool(s)? It looks like it's just sample code to open a socket to a CRI.
The snippets are taken from cilium/tetragon, aquasecurity/tracee and crictl as mentioned in the post.
The post doesn't covers these projects in depth, instead act as a quick reference to the parts, where connection with CRI is being made and used for enrichment.
I understand there are more better ways to do the thing.
P.S: Post is a collection of my memories, when I was implementing the functionality. So just wanted to share, in hope that, maybe it will help others as well. Thanks !