Bill Mulligan 🐝🐝🐝
@breakawaybilly.bsky.social
Cloud Native networking, observability, and security with Cilium, eBPF, and Isovalent
Newsletter cilium.io/newsletter
Newsletter cilium.io/newsletter
eBPF Foundation received a $228,000 grant from Alpha-Omega to strengthen the security of the ecosystem 🐝
Grant Recipients – Alpha Omega
OpenJS promotes the widespread adoption and continued development of key JavaScript technologies worldwide.
alpha-omega.dev
January 2, 2026 at 2:01 PM
eBPF Foundation received a $228,000 grant from Alpha-Omega to strengthen the security of the ecosystem 🐝
Highlights eBPF-code covered by verifier
GitHub - h0x0er/ebpf-cover: Highlights eBPF-code covered by verifier
Highlights eBPF-code covered by verifier. Contribute to h0x0er/ebpf-cover development by creating an account on GitHub.
github.com
January 2, 2026 at 9:30 AM
Highlights eBPF-code covered by verifier
Observability isn't a tool you buy anymore, rather it's a property of the platform you build.
If I had to summarize 2025 in a sentence, it would be that observability finally matured from a data business into a systems problem again.
If I had to summarize 2025 in a sentence, it would be that observability finally matured from a data business into a systems problem again.
Observability end of year review 2025
A review of the year 2025 in observability with Bill Mulligan, Diana Todea, Adriana Villela and Juraci Paixão Kröhling
observability-360.com
January 1, 2026 at 6:00 PM
Observability isn't a tool you buy anymore, rather it's a property of the platform you build.
If I had to summarize 2025 in a sentence, it would be that observability finally matured from a data business into a systems problem again.
If I had to summarize 2025 in a sentence, it would be that observability finally matured from a data business into a systems problem again.
High-Performance XDP Firewall & Traffic Analyzer written in Rust
GitHub - m4rba4s/Aegis-eBPF: High-Performance XDP Firewall & Traffic Analyzer written in Rust.
High-Performance XDP Firewall & Traffic Analyzer written in Rust. - m4rba4s/Aegis-eBPF
github.com
December 31, 2025 at 7:57 PM
High-Performance XDP Firewall & Traffic Analyzer written in Rust
Every server at Meta runs eBPF, 50% over 180 programs and they run on average across 20 different kernel versions
I think we will see more and more companies heading this way so check out this talk to see how they needed to re engineer their CI/CD pipeline
www.youtube.com/watch?v=wXuy...
I think we will see more and more companies heading this way so check out this talk to see how they needed to re engineer their CI/CD pipeline
www.youtube.com/watch?v=wXuy...
December 31, 2025 at 6:00 PM
Every server at Meta runs eBPF, 50% over 180 programs and they run on average across 20 different kernel versions
I think we will see more and more companies heading this way so check out this talk to see how they needed to re engineer their CI/CD pipeline
www.youtube.com/watch?v=wXuy...
I think we will see more and more companies heading this way so check out this talk to see how they needed to re engineer their CI/CD pipeline
www.youtube.com/watch?v=wXuy...
Minimal gulp agent to collect traces from eBPF
GitHub - mentat-is/slurp-ebpf: Minimal gulp agent to collect traces from ebpf
Minimal gulp agent to collect traces from ebpf. Contribute to mentat-is/slurp-ebpf development by creating an account on GitHub.
github.com
December 31, 2025 at 9:00 AM
Minimal gulp agent to collect traces from eBPF
A lightweight eBPF daemon that counts outbound TCP and UDP events per process and exports them as Prometheus metrics
GitHub - ruota/Metric-Net-Agent: MNA is a lightweight eBPF daemon that counts outbound TCP and UDP events per process and exports them as Prometheus metrics. It tracks connect counts, send/receive durations, and can optionally send duration data as OpenTelemetry spans to an OTLP collector.
MNA is a lightweight eBPF daemon that counts outbound TCP and UDP events per process and exports them as Prometheus metrics. It tracks connect counts, send/receive durations, and can optionally sen...
github.com
December 30, 2025 at 5:00 PM
A lightweight eBPF daemon that counts outbound TCP and UDP events per process and exports them as Prometheus metrics
Year 10 of Cilium and its been the best one yet. Read all about it in the Annual Report
Cilium Annual Report
www.linkedin.com
December 22, 2025 at 8:00 PM
Year 10 of Cilium and its been the best one yet. Read all about it in the Annual Report
eBPF-based tool for monitoring and visualizing Goroutine events in realtime with a beautiful web UI
GitHub - ozansz/xgotop
Contribute to ozansz/xgotop development by creating an account on GitHub.
github.com
December 22, 2025 at 7:00 AM
eBPF-based tool for monitoring and visualizing Goroutine events in realtime with a beautiful web UI
My alma mater uses Cilium 🐄 I wonder if these clusters help with ice cream production 🍦
"Cilium has been phenomenal. We started with core networking, added Hubble for observability, Cluster Mesh for cross-cluster communication, and are exploring Tetragon"
"Cilium has been phenomenal. We started with core networking, added Hubble for observability, Cluster Mesh for cross-cluster communication, and are exploring Tetragon"
University of Wisconsin–Madison
The University of Wisconsin–Madison is one of the nation’s premier research universities, ranked 8th nationally for research volume with $1.3 billion in research expenditures. As a top R1 research…
www.cncf.io
December 19, 2025 at 9:00 AM
My alma mater uses Cilium 🐄 I wonder if these clusters help with ice cream production 🍦
"Cilium has been phenomenal. We started with core networking, added Hubble for observability, Cluster Mesh for cross-cluster communication, and are exploring Tetragon"
"Cilium has been phenomenal. We started with core networking, added Hubble for observability, Cluster Mesh for cross-cluster communication, and are exploring Tetragon"
Security hardening tool designed to detect and break the post-exploit kill chain for containerized applications, leveraging BPF LSM
GitHub - micromize-dev/micromize: micromize is a security hardening tool designed to detect and break the post-exploit kill chain for containerized applications, leveraging BPF LSM.
micromize is a security hardening tool designed to detect and break the post-exploit kill chain for containerized applications, leveraging BPF LSM. - micromize-dev/micromize
github.com
December 19, 2025 at 7:00 AM
Security hardening tool designed to detect and break the post-exploit kill chain for containerized applications, leveraging BPF LSM
SCX_MUS, or Mostly Unfair Scheduler, is a custom Linux scheduler built with the sched_ext framework to optimize container prioritization in Kubernetes for improved performance
GitHub - patos-ufscar/Hackathon-eBPF-2025
Contribute to patos-ufscar/Hackathon-eBPF-2025 development by creating an account on GitHub.
github.com
December 18, 2025 at 7:00 AM
SCX_MUS, or Mostly Unfair Scheduler, is a custom Linux scheduler built with the sched_ext framework to optimize container prioritization in Kubernetes for improved performance
eBPF dev room schedule for FOSDEM 2026 is out 🐝
eBPF has become a normalized building block for infrastructure so if you want a single room that spans kernel internals, language tooling, observability, and networking, I'll see you in Brussels over a beer 🍻
fosdem.org/2026/schedul...
eBPF has become a normalized building block for infrastructure so if you want a single room that spans kernel internals, language tooling, observability, and networking, I'll see you in Brussels over a beer 🍻
fosdem.org/2026/schedul...
December 18, 2025 at 6:58 AM
eBPF dev room schedule for FOSDEM 2026 is out 🐝
eBPF has become a normalized building block for infrastructure so if you want a single room that spans kernel internals, language tooling, observability, and networking, I'll see you in Brussels over a beer 🍻
fosdem.org/2026/schedul...
eBPF has become a normalized building block for infrastructure so if you want a single room that spans kernel internals, language tooling, observability, and networking, I'll see you in Brussels over a beer 🍻
fosdem.org/2026/schedul...
Monitor ARP, TCP, UDP, ICMP, DNS, HTTP, and TLS traffic at the kernel level using eBPF
GitHub - zrougamed/cerberus: Real-time network monitoring with eBPF technology
Real-time network monitoring with eBPF technology. Contribute to zrougamed/cerberus development by creating an account on GitHub.
github.com
December 16, 2025 at 9:01 AM
Monitor ARP, TCP, UDP, ICMP, DNS, HTTP, and TLS traffic at the kernel level using eBPF
Happy 10th Birthday, Cilium! 🎂
One decade ago, Thomas Graf pushed an initial commit with just a LICENSE, a .gitignore, and 226 lines of code. There was no Hubble, no Cluster Mesh, no network policy, no Tetragon, and eBPF still had a logo with a pea pod in it.
One decade ago, Thomas Graf pushed an initial commit with just a LICENSE, a .gitignore, and 226 lines of code. There was no Hubble, no Cluster Mesh, no network policy, no Tetragon, and eBPF still had a logo with a pea pod in it.
December 16, 2025 at 7:00 AM
Happy 10th Birthday, Cilium! 🎂
One decade ago, Thomas Graf pushed an initial commit with just a LICENSE, a .gitignore, and 226 lines of code. There was no Hubble, no Cluster Mesh, no network policy, no Tetragon, and eBPF still had a logo with a pea pod in it.
One decade ago, Thomas Graf pushed an initial commit with just a LICENSE, a .gitignore, and 226 lines of code. There was no Hubble, no Cluster Mesh, no network policy, no Tetragon, and eBPF still had a logo with a pea pod in it.
Reposted by Bill Mulligan 🐝🐝🐝
At #LinuxPlumbers, @breakawaybilly.bsky.social presented what the eBPF Foundation is doing, where its funds are going, and asked the attendees what should be next.
Recording: www.youtube.com/live/ZLRngpd...
Slides: lpc.events/event/19/con...
Recording: www.youtube.com/live/ZLRngpd...
Slides: lpc.events/event/19/con...
December 15, 2025 at 12:01 PM
At #LinuxPlumbers, @breakawaybilly.bsky.social presented what the eBPF Foundation is doing, where its funds are going, and asked the attendees what should be next.
Recording: www.youtube.com/live/ZLRngpd...
Slides: lpc.events/event/19/con...
Recording: www.youtube.com/live/ZLRngpd...
Slides: lpc.events/event/19/con...
Interactive graphical thread and scheduling analysis tool using eBPF
GitHub - tokiwa-software/feeze: Interactive graphical thread and scheduling analysis tool using eBPF
Interactive graphical thread and scheduling analysis tool using eBPF - tokiwa-software/feeze
github.com
December 15, 2025 at 9:01 AM
Interactive graphical thread and scheduling analysis tool using eBPF
Ecosystems emerge from code and community coordination. My presentation at Linux Plumbers Conference walked through how eBPF Foundation is building the scaffolding that makes innovation repeatable.
LPC Slides
www.linkedin.com
December 12, 2025 at 1:00 PM
Ecosystems emerge from code and community coordination. My presentation at Linux Plumbers Conference walked through how eBPF Foundation is building the scaffolding that makes innovation repeatable.
XDP Virtual Server - an eBPF load balancer implementation and supporting Go library
GitHub - davidcoles/xvs: XDP Virtual Server - an eBPF load balancer implementation and supporting Go library
XDP Virtual Server - an eBPF load balancer implementation and supporting Go library - davidcoles/xvs
github.com
December 12, 2025 at 10:02 AM
XDP Virtual Server - an eBPF load balancer implementation and supporting Go library
A high-performance network traffic generation tool that leverages XDP
GitHub - takehaya/xdperf: xdperf is a high-performance network traffic generation tool that leverages XDP (eXpress Data Path).
xdperf is a high-performance network traffic generation tool that leverages XDP (eXpress Data Path). - takehaya/xdperf
github.com
December 11, 2025 at 10:01 AM
A high-performance network traffic generation tool that leverages XDP
I'm at Linux Plumbers Conference in Tokyo this week to talk about what the eBPF Foundation accomplished this year and get feedback from the community on what we should focus on next
If you can't make, let me know what you think is currently holding eBPF back so the foundation can work to fix it 🐝
If you can't make, let me know what you think is currently holding eBPF back so the foundation can work to fix it 🐝
December 11, 2025 at 1:14 AM
I'm at Linux Plumbers Conference in Tokyo this week to talk about what the eBPF Foundation accomplished this year and get feedback from the community on what we should focus on next
If you can't make, let me know what you think is currently holding eBPF back so the foundation can work to fix it 🐝
If you can't make, let me know what you think is currently holding eBPF back so the foundation can work to fix it 🐝
Excited to be in Tokyo for Linux Plumbers Conference. Shung-Hsi Yu already has a summary of what to look forward to on day 1. What do you think is the most interesting?
shungh.si/blog/lpc-202...
shungh.si/blog/lpc-202...
Looking Ahead at LPC 2025 eBPF Track Day 1
The eBPF Track starts off on the first day (11th of December) of Linux Plumbers Conference 2025 with topics on BPF verifier, with Ihor…
shungh.si
December 10, 2025 at 3:51 PM
Excited to be in Tokyo for Linux Plumbers Conference. Shung-Hsi Yu already has a summary of what to look forward to on day 1. What do you think is the most interesting?
shungh.si/blog/lpc-202...
shungh.si/blog/lpc-202...
Userspace library for chaining co-located AF_XDP network applications
GitHub - networkedsystemsIITB/flash: FLASH userspace library for chaining co-located AF_XDP network applications
FLASH userspace library for chaining co-located AF_XDP network applications - networkedsystemsIITB/flash
github.com
December 10, 2025 at 10:01 AM
Userspace library for chaining co-located AF_XDP network applications
Advent of code? How about advent of eBee? 🐝 Brush up on your @cilium.io skills over the holidays 🎄
A holiday virtual eBee Quest!
Join our eBee Quest! Tackle our labs during the holidays, compete with others in completing all the labs there are, get the chance to win something - and learn a lot during the process!
isovalent.com
December 9, 2025 at 12:01 PM
Advent of code? How about advent of eBee? 🐝 Brush up on your @cilium.io skills over the holidays 🎄
Lightweight system for profiling XDP applications using kfuncs
GitHub - VladimiroPaschali/eBPF-InXpect: lightweight system for profiling XDP applications using kfuncs
lightweight system for profiling XDP applications using kfuncs - VladimiroPaschali/eBPF-InXpect
github.com
December 9, 2025 at 10:02 AM
Lightweight system for profiling XDP applications using kfuncs