The Technical
Cilium ztunnel – native mTLS for Cilium on Azure Kubernetes Service BYOCNI
Cilium ztunnel with native routing matches unencrypted throughput at 12 Gbit/s
Building an Event-Driven Network Policy Engine with eBPF and Cilium
Cilium policy enforcement as BPF map lookups at the TC hook
ActPlane: Pushing Agent Harness Enforcement Down to Kernel eBPF
Analyzing blind spots of prompt constraints, tool-layer guards, & sandboxes
eBPF and WASM - Better Together
Ship eBPF programs as OCI artifacts with a WASM module for user-space logic
Research Update: Verifier-Cooperative Runtime Enforcement for eBPF
Two years in academic research funded by the eBPF Foundation continues
A conversation with the eBPF verifier
Two Rust eBPF verifier rejections only made sense after inspecting the bytecode
dengtaowei/usbtrace
eBPF-based USB subsystem tracer and diagnostic tool for Linux BSP
lothan/evil-bit
eBPF tooling to implement RFC 3514 - the "evil bit" in the IPv4 header
Kernel-Guard/bpfcompat
Open-source eBPF compatibility evidence and CI gate
ccyrene/prism
One stable identity for the scheduler, network, and tracing in Kubernetes with eBPF
altugbozkurt07/agentguard
eBPF probes CPython frame execution and returns early for unprotected processes
meta-flutter/agl-health
eBPF-based system health and security observability for Automotive Grade Linux
tollwing/tollwing
Per-pod Kubernetes network cost, by AWS billing path with eBPF
eunomia-bpf/bpfix
Turn cryptic eBPF verifier rejection logs into readable, actionable diagnostics
yuskesh/apple-container-ebpf-kernel
Build a custom Linux kernel with a full eBPF feature set and run it under Apple's container runtime on Apple Silicon macOS
mashirochenkernel/assemblyebpf
A hand-written eBPF tool tree, the eBPF programs are assembly source files
tanelpoder/brr
Runtime Reporter and Profiler for eBPF programs
avolkov-II/latency-profiler
Measuring and visualizing end-to-end latency in trading systems using eBPF
scitags/gbpf
A userspace eBPF VM written in Go
yuskesh/spinel-ebpf
Write eBPF programs in Ruby
🐝
The Ecosystem
The eBPF Re-Platforming Thesis: An Investor’s Due Diligence Guide
The matrix on page 12 is how I personally evaluate eBPF based companies
Securing CI/CD for an open source project: Locking down dependencies
How Cilium hardens its dependency tree: part 2 on CI/CD supply chain security
Why cloud native belongs at the heart of agentic AI: Lessons from building a multi-agent security platform on Kubernetes
Orange Innovation uses Cilium to restrict which AI agents can reach which MCP servers, and Hubble to trace inter-agent traffic in a production SOC platform
🐝
The How To
The Video
eBPF, Cilium, and the Future of Kubernetes Networking with Isovalent & VKS
Duffie Cooley on Cilium as a VKS day-zero add-on
🐝
The Events
ACM SOSP'26 Workshop on eBPF and Kernel Extensions
September 29th in Prague
Linux Plumbers Conference
October 5-7th in Prague, CfP open though July 24
CiliumCon
November 9 in Salt Lake City
🐝