Aqua Blog

Itamar Maouda

Itamar Maouda
Itamar is a Security Researcher at Team Nautilus, Aqua’s research team. He focuses on researching malware and threats in cloud native environments. Outside of work, Itamar is a professional long-distance runner and BA student at the Open University of Israel.
Hunting Rootkits with eBPF: Detecting Linux Syscall Hooking Using Tracee

Hunting Rootkits with eBPF: Detecting Linux Syscall Hooking Using Tracee

Today, cloud native platforms are increasingly using eBPF-based security technology. It enables the monitoring and analysis of applications’ runtime behavior by creating safe hooks for tracing internal functions and capturing important data for forensic purposes. Tracee is an open source runtime security and forensics …

Continue reading ›