Cloud Village, profile picture
Uploaded byCloud Village
PDF, PPTX77 views

Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling

Abstract: As security engineers, managing risk means making informed decisions about which vulnerabilities to address first. We are often too time constrained, and the signal-to-noise ratio of current SAST/SCA tooling is too low. This talk introduces "Runtime Reachability," a novel approach that leverages Continuous Profiling via eBPF to quantify how often a vulnerable method/codepath is called, in actual production usage. By understanding the runtime behavior of applications, security teams can effectively filter out low-likelihood vulnerabilities, prioritize fixes more effectively, reduce toil & the overall risk to their organization.

Embed presentation

Download as PDF, PPTX
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Profiling

More Related Content

PPTX
Unexpected Leaks in AWS Transit Gateways
byCloud Village
 
PDF
The Rise of the Planet of the Agents: LLM-based AI Agents and Cloud Security ...
byCloud Village
 
PDF
Creating Azure Policy Compliant Backdoor
byCloud Village
 
PPTX
Kicking in the Door to the Cloud: Exploiting Cloud Provider Vulnerabilities f...
byCloud Village
 
PDF
Cloud Tripwires: fighting stealth with stealth
byCloud Village
 
PPTX
Connecting the Dots - Mastering Alert Correlation for Proactive Defense in th...
byCloud Village
 
PPTX
Revealing Choke Points - Practical Tactics for Boosting Cloud Security
byCloud Village
 
PDF
Finding Holes in Conditional Access Policies
byCloud Village
 
Unexpected Leaks in AWS Transit Gateways
byCloud Village
 
The Rise of the Planet of the Agents: LLM-based AI Agents and Cloud Security ...
byCloud Village
 
Creating Azure Policy Compliant Backdoor
byCloud Village
 
Kicking in the Door to the Cloud: Exploiting Cloud Provider Vulnerabilities f...
byCloud Village
 
Cloud Tripwires: fighting stealth with stealth
byCloud Village
 
Connecting the Dots - Mastering Alert Correlation for Proactive Defense in th...
byCloud Village
 
Revealing Choke Points - Practical Tactics for Boosting Cloud Security
byCloud Village
 
Finding Holes in Conditional Access Policies
byCloud Village
 

More from Cloud Village

PPTX
One Click, Six Services - Abusing The Dangerous Multi-service Orchestration P...
byCloud Village
 
PDF
Terraform Unleashed - Crafting Custom Provider Exploits for Ultimate Control
byCloud Village
 
PPTX
Workshop: Hands-On Container Image Security Mastering Sigstore for Unbreachab...
byCloud Village
 
PDF
DC 32: Epyon - Attacking DevOps environments
byCloud Village
 
PDF
Exploit K8S via Misconfiguration .YAML in CSP environments
byCloud Village
 
PDF
Cloud Offensive Breach and Risk Assessment (COBRA)
byCloud Village
 
PDF
One Port to Serve Them All - Google GCP Cloud Shell Abuse
byCloud Village
 
PDF
The Oracle Awakens: Demystifying Privilege Escalation in the cloud
byCloud Village
 
PDF
Catch them all! Detection engineering and purple teaming in the cloud
byCloud Village
 
PDF
Gone in 60 Seconds… How Azure AD/Entra ID Tenants are Compromise
byCloud Village
 
One Click, Six Services - Abusing The Dangerous Multi-service Orchestration P...
byCloud Village
 
Terraform Unleashed - Crafting Custom Provider Exploits for Ultimate Control
byCloud Village
 
Workshop: Hands-On Container Image Security Mastering Sigstore for Unbreachab...
byCloud Village
 
DC 32: Epyon - Attacking DevOps environments
byCloud Village
 
Exploit K8S via Misconfiguration .YAML in CSP environments
byCloud Village
 
Cloud Offensive Breach and Risk Assessment (COBRA)
byCloud Village
 
One Port to Serve Them All - Google GCP Cloud Shell Abuse
byCloud Village
 
The Oracle Awakens: Demystifying Privilege Escalation in the cloud
byCloud Village
 
Catch them all! Detection engineering and purple teaming in the cloud
byCloud Village
 
Gone in 60 Seconds… How Azure AD/Entra ID Tenants are Compromise
byCloud Village
 

Recently uploaded

PDF
Supercharging Android Apps with On-Device AI: Gemini Nano
bydinoykraj
 
PDF
Introduction to Shell Scripting - RHCSA+.pdf
byLinuxCert Guru
 
PPTX
Conserving precious peatland habitats using mobile apps - Esri UK Welsh Confe...
byEsri UK
 
PDF
UnityNet AI Induced Harm & Youth Protection Position Statement 2025-11-15
byLHelferty
 
PDF
Building Powerful Web Apps to Improve Productivity and Engagement - Esri UK W...
byEsri UK
 
PDF
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
PPTX
Neo4j Fraud GraphTalk Singapore Nov 2025
bygourisachdeva2
 
PDF
AWS Cloud Technical Essentials - AWS Certificate
byVICTOR MAESTRE RAMIREZ
 
PPTX
Osmosis webinar presentation Nov 2025:Empowering UK Nursing Education
byJisc
 
PDF
Beyond Basics: How to Build Scalable, Intelligent Imagery Pipelines
bySafe Software
 
PDF
Top Crypto Supers 15th Report November 2025
byStephen Perrenod
 
PPTX
Opening Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
PDF
Case Study: How LKQ Corporation Improved Training Efficiency & Delivery
byRustici Software
 
PDF
Mutation Testing for Industrial Robotic Systems (FMAS 2025)
bySylvain Hallé
 
PDF
IDSECCONF2025 - Budi Rahardjo - Cyber Security and AI.pdf
byidsecconf
 
PDF
AI in Food Production (Foodwell) - AI Solutions Supporting Operations
bybyteLAKE
 
PDF
UiPath DevConnect 2025: UiPath ScreenPlay - The Future of Human-Like Automation
byDianaGray10
 
PPTX
Closing Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
PDF
Oracle MySQL HeatWave - Complete - Version 3
byLuca Bonesini
 
PDF
Command Line Text Processing - RHCSA +.pdf
byLinuxCert Guru
 
Supercharging Android Apps with On-Device AI: Gemini Nano
bydinoykraj
 
Introduction to Shell Scripting - RHCSA+.pdf
byLinuxCert Guru
 
Conserving precious peatland habitats using mobile apps - Esri UK Welsh Confe...
byEsri UK
 
UnityNet AI Induced Harm & Youth Protection Position Statement 2025-11-15
byLHelferty
 
Building Powerful Web Apps to Improve Productivity and Engagement - Esri UK W...
byEsri UK
 
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
Neo4j Fraud GraphTalk Singapore Nov 2025
bygourisachdeva2
 
AWS Cloud Technical Essentials - AWS Certificate
byVICTOR MAESTRE RAMIREZ
 
Osmosis webinar presentation Nov 2025:Empowering UK Nursing Education
byJisc
 
Beyond Basics: How to Build Scalable, Intelligent Imagery Pipelines
bySafe Software
 
Top Crypto Supers 15th Report November 2025
byStephen Perrenod
 
Opening Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
Case Study: How LKQ Corporation Improved Training Efficiency & Delivery
byRustici Software
 
Mutation Testing for Industrial Robotic Systems (FMAS 2025)
bySylvain Hallé
 
IDSECCONF2025 - Budi Rahardjo - Cyber Security and AI.pdf
byidsecconf
 
AI in Food Production (Foodwell) - AI Solutions Supporting Operations
bybyteLAKE
 
UiPath DevConnect 2025: UiPath ScreenPlay - The Future of Human-Like Automation
byDianaGray10
 
Closing Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
Oracle MySQL HeatWave - Complete - Version 3
byLuca Bonesini
 
Command Line Text Processing - RHCSA +.pdf
byLinuxCert Guru