Al-LLM powered eBPF based security platform

5 pointsposted 5 days ago
by gaurav1086

Item id: 44119785

5 Comments

vin10

5 days ago

Nice usability features definitely. Apart from that how would you say it compares against something like sysdig falco / cilium + tetragon?

Apart from this a major issue is DNS based dynamic filtering which is way batter to get right in a Kubernetes environment with something like Cilium. IP lists are impossible to manage with modern level of third party integrations.

gaurav1086

3 days ago

   - technological advantage (ebpf + AI/LLM)
   - lightweight, uses very less resouces than other heavy/bloated solutions
   - seamless installation.
   - highly customizable and fast shipping compared to existing solutions.
   - can create custom rules to raise alerts on any file, commands, uid, gid, port, ip etc.
   - XDR: automated response/blocking of malicious ip/port.

miravmehta

5 days ago

This is good. Why was this created in the first place? I am curious what problems does it solve additionally?

gaurav1086

3 days ago

   - technological advantage (ebpf + AI/LLM)
   - lightweight, uses very less resouces than other heavy/bloated solutions
   - seamless installation.
   - highly customizable and fast shipping compared to existing solutions like splunk, wazuh, sentinel one etc.
   - can create custom rules to raise alerts on any file, commands, uid, gid, port, ip etc.
   - XDR: automated response/blocking of malicious ip/port.

gaurav1086

3 days ago

contact info@sentrilite.com for further details.