Skip to content

v0.6.0
Compare
Choose a tag to compare
@github-actions github-actions released this 05 Jun 14:01
v0.6.0
ecde943

What's Changed

Added

  • cross compilation task
  • bpf loop detection
  • extract absolute file paths on exec
  • cgroup support
  • collection support in rules
  • dynamic fields compare in rules

Changed

  • improved LSM autodetect
  • allow more that one BPF program per module
  • moved get_path_str to shared header
  • more modular event filtering
  • validatron rewrite

Fixed

  • uname parse for wsl2
  • module manager start command
  • memory alignments issue in bpf output event struct
  • warning on stopping never started modules

Check out the changelog for details on all the changes and fixes.

Assets 6
Loading