eBPF-based Security Observability and Runtime Enforcement
Tetragon is a Kubernetes-native synchronous monitoring, filtering & enforcement tool that applies policies and filtering directly in-kernel with eBPF.
Kubernetes context awareness (namespaces, labels, pods, etc) provides fine grained control over workloads
Low overhead eBPF programs for in-kernel smart filtering, aggregation, and telemetry collection
From low-level kernel visibility, all the way up into the application layers
Read the 1.0 Announcement
Introducing Tetragon 1.0: eBPF-based Security Observability & Runtime EnforcementLearn more here
Transparent Kubernetes Observability
Get started with Tetragon now. Easy to deploy and ready to work without any application changes. Watch here for a walkthrough of rolling out Tetragon without Cilium!
Want to learn more?
There is plenty more material available if you'd like to learn more.