eBPF-based Security Observability and Runtime Enforcement
Tetragon is a flexible Kubernetes-aware security observability and runtime enforcement tool that applies policy and filtering directly with eBPF, allowing for reduced observation overhead, tracking of any process, and real-time enforcement of policies.
TECH LEADERS USE TETRAGON
Revolutionize Your Observability and Security
-
Monitor Process Execution
Observe the complete lifecycle of every process on your machine with Kubernetes context awareness
-
Runtime Security Policies
Translate high level policies for file monitoring, network observability, container security, and more into low overhead eBPF programs
-
Real Time Enforcement
Synchronous monitoring, filtering, and enforcement completely in the kernel with eBPF
How does Tetragon work
Watch videos on Tetragon
-
The Next Log4jshell?! Preparing for CVEs with eBPF!
John Fastabend & Natalia Reka Ivanko • Apr, 2023
-
Tutorial: Getting Familiar with Security Observability Using eBPF & Cilium Tetragon
Duffie Cooley & Raphaël Pinson • Apr, 2023
-
Securing the Superpowers: Who Loaded That EBPF Program?
John Fastabend & Natalia Reka Ivanko • Feb, 2023