Blog

We've read enough boring blog posts... We promise not to write any ;)

Attacking and Securing eBPF Maps

Neil Naveen Oct 22, 2025

BPF Maps aren't really that secure against users with admin permissions

LD_PRELOAD, The Invisible Key Theft

Neil Naveen Oct 14, 2025

How LD_PRELOAD can be used to steal keys without you knowing...

GitHub’s ubuntu-latest Runners Have 1,681 Packages and 9 HIGH-Severity Vulnerabilities

Nathan Naveen Oct 09, 2025

GitHub runners are packed with vulnerabilities. Should we really be using them?

How We Secured Our eBPF from eBPF

Nathan Naveen Oct 07, 2025

This blog post is one in a series about how we secure our eBPF agent from malicious users who try to overwrite or destroy it.

We're Replacing Our Kubernetes Ingress Stack with Cloudflare Tunnels, Here's Why

Neil Naveen Sep 18, 2025

Why we're moving from NGINX/Ingress + Load Balancers to Cloudflare Tunnels: simpler ops, better security, global performance, and lower cost.