Kernel Pwning with eBPF - A Love Story

Explore the fundamentals of eBPF technology and its impact on Linux kernel security in this 43-minute conference talk from Ekoparty 2021. Delve into the basics of eBPF, its verifier, and the new attack surface it introduces. Learn about eBPF verifier vulnerabilities and how they can be exploited to achieve code execution in the kernel. Led by Valentina Palmiotti, a lead security researcher at Grapl, Inc., specializing in low-level vulnerabilities, exploit development, and offensive security. Gain insights into this cutting-edge technology that allows developers to extend Linux kernel capabilities safely and efficiently without writing kernel code.

Kernel Pwning with eBPF: a Love Story ▪ Chompie ▪ Ekoparty 2021