datadog Scaling real-time file monitoring with eBPF: How we filtered billions of kernel events per minute (opens in new tab)
Yoann Ghigoff Jonathan Ribas Sylvain Afchain Sylvain Baubeau Guillaume Fournier File integrity monitoring (FIM) helps teams detect unauthorized changes to sensitive files and is a critical part of any security posture. Yet building an FIM system that works reliably across modern…