eBPF-based Security Observability and Runtime Enforcement
Tetragon is a flexible Kubernetes-aware security observability and runtime enforcement tool that applies policy and filtering directly with eBPF, allowing for reduced observation overhead, tracking of any process, and real-time enforcement of policies.
TECH LEADERS USE TETRAGON
Revolutionize Your Observability and Security
Monitor Process Execution
Observe the complete lifecycle of every process on your machine with Kubernetes context awareness
Runtime Security Policies
Translate high level policies for file monitoring, network observability, container security, and more into low overhead eBPF programs
Real Time Enforcement
Synchronous monitoring, filtering, and enforcement completely in the kernel with eBPF
How does Tetragon work
Watch videos on Tetragon
The Next Log4jshell?! Preparing for CVEs with eBPF!
John Fastabend & Natalia Reka Ivanko • Apr, 2023
Tutorial: Getting Familiar with Security Observability Using eBPF & Cilium Tetragon
Duffie Cooley & Raphaël Pinson • Apr, 2023
Securing the Superpowers: Who Loaded That EBPF Program?
John Fastabend & Natalia Reka Ivanko • Feb, 2023