基于eBPF的Al-LLM驱动安全平台
对大型和小型企业而言,市场对轻量级的、基于AI-LLM和eBPF的EDR/XDR解决方案的需求日益增长,而这一解决方案的价格也必须合理。
我们构建了一个自我管理的EDR/XDR平台,结合了实时入侵检测、增强的用户活动日志记录和敏感文件监控,所有这些功能都由eBPF驱动,以实现深度系统可见性。该平台设计高效,能够支持数千个终端,并配备了简洁的双仪表板用户界面(主界面 + 每台服务器界面),方便大规模管理。
该平台在数千台服务器上无缝工作:
- 检测文件访问/修改(例如:/etc/passwd)
- 记录详细的用户行为和可疑命令活动
- 通过一键阻止服务器组中的恶意IP
- AI辅助的警报分类和风险评分
这里有一个快速的2分钟演示: https://youtu.be/16BvgmfiYzQ — 我们期待您的反馈!
查看原文
There’s a growing need for a lightweight, AI-LLM + eBPF-powered EDR/XDR solution that works for both large and small enterprises — and is actually affordable.<p>We’ve built a self-managed EDR/XDR platform that combines real-time intrusion detection, enhanced user activity logging, and sensitive file monitoring, all driven by eBPF for deep system visibility. It’s designed to be efficient enough for thousands of endpoints, and comes with a clean, dual-dashboard UI (main + per-server) for managing everything at scale.<p>Works seamlessly across 1000s of servers
Detects file access/modifications (e.g. /etc/passwd)
Logs detailed user behavior and suspicious command activity
Blocks malicious IPs across server groups with 1 click
AI-assisted alert classification and risk scoring<p>Here’s a quick 2-minute demo: https://youtu.be/16BvgmfiYzQ — would love your thoughts!