linneman labs buildingbreakingobserving

content ··· verified

home / ebpf

Ebpf

2026.04.24Detection Below the Socket LayerMalware that hand-builds its own packets slips past socket-level monitoring so the detection drops below the socket too.

about · trust · rss

app ··· · content ··· · provenance →