Kernel Runtime Security Instrumentation - KP Singh, Google
Kernel Runtime Security Instrumentation LSM+BPF=KRSI
Kernel Runtime Security Instrumentation LSMBPF=KRSI
2019 - Security Instrumentation Is the Future of All Software
CPP | Brian Smith defines "What is runtime security?"
Efficient runtime verification for the linux kernel
About The Need to Power Instrument The Linux Kernel - Patrick Titiano, BayLibre
Infoflow LSM - Roberto Sassu, Cyber Security and Privacy Lab (CSPL)
Deep Dive: Runtime Security With Falco in Userspace - Loris Degioanni, Sysdig
bpfbox: Simple Precise Process Confinement with KRSI and eBPF (William Findlay)
STACKLEAK: A Long Way to the Linux Kernel Mainline - Alexander Popov, Positive Technologies
bpfbox: Simple Precise Process Confinement with KRSI and eBPF - William Findlay, Carleton University
Aqua Security runtime prevention (not open source!)
Talk 09 - Leonardo Di Donato - Falco: runtime security analysis through syscalls
Bochspwn Reloaded: Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking
Inside the Linux Security Modules (LSM) - Vandana Salve, Prasme Systems
Achieving Zero-Instrumentation Monitoring with eBPF - Kemal Akkoyun, Polar Signals
Stochastic streams: Runtime instrumentation of the Linux kernel with eBPF and Rust
Overview and Recent Developments: seccomp and Small Linux Security Modules - Kees Cook, Google
GopherCon Europe 2021: Julio Guerra - Dynamic Go Instrumentation for Production Environments
Dealing with Uninitialized Memory in the Kernel - Alexander Potapenko, Google
Linux Kernel Tracing Using eBPF - Vandana Salve, Prasme Systems
Making Linux Security Modules available to Containers Stacking and Namespacing the LSM
Orchestructure January 2020 - Falco - Container Native Runtime Security
