Rust supports a large number of target platforms, but BPF is not one of them yet. Therefore in order to compile for the BPF virtual machine, cargo-bpf needs to implement some ad-hoc build logic…Continue Reading: Oxidised eBPF II: Taming LLVM
monitoring
Oxidised eBPF I: Building a toolchain
This is the first of two posts about ingraind and the Rust BPF library that powers it, RedBPF. In this post I’m going to give you an overview of what ingraind is, and how it led to the development of RedBPF. Then in the next post, I’m going to get a little more technical and show how we compile Rust code to BPF binary code…Continue Reading: Oxidised eBPF I: Building a toolchain
Announcing ingraind 1.0
Almost 2 years ago when I joined Red Sift, I kicked off development on ingraind and its core, RedBPF, with the goal of building a better kind of security agent to monitor file access, network traffic, and DNS queries in our infrastructure. We have shared our journey on this blog, and received a lot of…Continue Reading: Announcing ingraind 1.0
Writing BPF code in Rust
You don’t really need to be an BPF expert to read this post, as in the next section I’m going to give a quick, super high level overview of the main concepts you need to know to understand the rest. …Continue Reading: Writing BPF code in Rust