https://elijahu.me/portfolio/tags/container-security/Infrastructure & Cloud Engineering portfolio by Elijah Udom (elijahu) — AWS, Kubernetes, eBPF Security, AI/ML Infrastructure, and Platform Engineering projects.Hugo -- gohugo.ioenWed, 19 Mar 2025 00:00:00 +0000https://elijahu.me/portfolio/projects/ebpf-container-security/Wed, 19 Mar 2025 00:00:00 +0000https://elijahu.me/portfolio/projects/ebpf-container-security/“Monitoring containers without eBPF is whack-a-mole blindfolded.” What started as a straightforward container security tool became a weeks-long exercise in kernel panics, parent process deception, and eBPF’s complete lack of forgiveness for sloppy code. This is the honest account of what it took to get it working. Understanding the Fundamentals The Kernel The kernel controls everything — memory, devices, security. Every system call your containerized application makes passes through it.