eBPF is hard to do right. We couldn’t use Falco in production on our kubernetes infrastructure because of that.
I long for a production-ready runtime monitoring tool that can ACTUALLY be used in a blocking mode. Otherwise we’re always too late, and I’ve been burned more than once when dealing with an incident. Damned hackers always seem to come around weekends and holidays.
With over 22 years in IT, my career has spanned across industry leaders like AquaSec, Canonical, IBM, Linaro, RedHat, and Sun Microsystems. I've contributed as a core developer to projects such as Tracee (eBPF) and Ubuntu, always driven by my passion for open-source software, kernel development, and security introspection.
I'm passionate about combining deep technical knowledge with innovative approaches to security, and Jibril represents exactly that—a powerful, adaptable solution for modern runtime security challenges.
Feel free to connect, ask questions, or discuss anything related to Runtime Security. I'm excited to engage with the community and continue pushing the boundaries of runtime security together!
Let's secure the future, one kernel at a time!
Rafael Tinoco Jibril Runtime Security @ Garnet Labs Jibril, help us!