This workshop will provide you with hands-on experience in tracing Linux system calls using BCC (BPF Compiler Collection). In this workshop, you will learn how to use BCC, a powerful tool for tracing and analyzing the behavior of Linux programs at a system call level. BCC allows you to gather insights into system activity, performance bottlenecks, and more. Additionally, we'll showcase advanced use cases from eBPFShield, covering Advanced IP-Intelligence & DNS Monitoring using eBPF.

• Date: XX/XX/XXXX
• Time: XX:XX XX
• Duration: 60 mins

• Virtualbox/VMware with Ubuntu image (22.04 LTS), with root privilege.
• Laptop with Ubuntu (above 20.04LTS) with root privilege.

To get started with the workshop, follow these steps:

1. Clone this repository to your local machine:

   git clone https://github.com/sagarbhure/HIP-eBPF.git
   

2. bcc toolchain

   apt install python3-bpfcc bpfcc-tools libbpfcc linux-headers-$(uname -r)