filmov
tv
Securing CI/CD Systems Through eBPF - Alex Ilgayev, Cycode
Показать описание
Securing CI/CD Systems Through eBPF - Alex Ilgayev, Cycode
The challenging nature of securing CI/CD pipelines, mainly because of inadequate security tooling and low observability of the underlying system, would make using the eBPF technology inevitable. This technical talk aims to demonstrate how eBPF can be used to secure CI/CD pipelines, whether they run on bare-metal, virtual machines, or ephemeral environments. By combining dedicated research, an innovative approach, and proper tooling, we can inject an eBPF-based implant into every build environment quickly and easily, to inspect, identify, and protect against malicious activity. We will demonstrate the following use-cases: - Visibility over the entire build process - created processes, contacted IP addresses/domains, modified files, traffic inspection, etc. - Ensure code and artifact integrity. - Denying build process tampering. - Maintain a tight network policy to prevent processes from exfiltrating sensitive secrets, such as tokens and environment variables. We will demonstrate how we can stop the deadliest software supply chain attacks while supporting all major CI/CD platforms, such as Github Actions, Jenkins, GitlabCI, and CircleCI.
0:35:30
Securing CI/CD Systems Through eBPF - Alex Ilgayev, Cycode
0:45:23
Securing CI/CD Runners Through eBPF Agent
0:13:40
Securing CI/CD runners through eBPF agent | Mert Coskuner & Cenk Kalpakoglu | Conf42 CN 2024
0:30:06
Securing CI/CD Runners Through eBPF Agent - Mert Coskuner, Yahoo & Cenk Kalpakoglu, Kondukto
0:29:20
Reproducing Production Issues in your CI Pipeline Using eBPF - Matthew LeRay & Omid Azizi
0:05:19
Strengthen Security with an eBPF-based Kubernetes CNI - Shruti Chaturvedi, MeetKlara
1:00:13
Monitoring Containerized Application Environments with eBPF
1:01:13
Hands-on guide to Runtime Security for CI/CD Pipelines with StepSecurity
0:27:18
eBPF - Superpowers for Networking, Observability & Security - Liz Rice - Swiss Cloud Native Day ...
0:09:57
Keynote: eBPF - Everything You Need to Know in 5 Minutes - Thomas Graf, CTO, Isovalent
0:34:55
Runtime Security using eBPF and OPA - Itay Shakury, Open Source at Aqua Security
0:12:16
Securing CI/CD: Complexity & Inspiration from Runtime Security - Abhimanyu Dhamija, KoalaLab
0:53:17
Cilium & eBPF - Cloud-Native Networking, Security & Observability
0:13:09
Triaging Real Time Security Threats with eBPF Powered Observability • Daniel Kim • GOTO 2022
0:19:21
Kubernetes Network Policy Logging with eBPF - Zang Li, Google - Full Keynote
0:22:18
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
0:02:48
How is Semaphore different from other CI/CD tools?
0:38:36
Boosting Cloud Native Security With eBPF
0:36:21
eBPF Superpowers For Security
0:29:01
Github Actions Security Landscape with Alex Ilgayev
0:55:50
Hardening Your CI/CD Pipeline with GitOps and Continuous Security
0:05:14
Securing Kubernetes Clusters with DevSecOps and GitLab - Sam White, GitLab - Full Lightning
0:09:23
DevSecOps Decoded | Technically Speaking
0:39:43
Keep Calm and Secure Your CI/CD Pipeline
Комментарии