What is eBPF? With this revolutionary technology, you can write custom code that dynamically changes the way the kernel behaves. It's an extraordinary platform for building a whole new generation of security, observability, and networking tools. This practical book is perfect for developers, system administrators, operators, and students who want to know how it works. Author Liz Rice provides a foundation for those who want to understand eBPF. Code and command-line examples serve as a launch pad for those who want to explore the technology and learn to write eBPF programs themselves. With this book, you will: Discover why eBPF has become so important in recent years, and how it enables the creation of powerful infrastructure tools, Explore eBPF code from "Hello World" to examples that detect security-relevant events and manipulate network packets, Learn how to manage eBPF programs and attach them to events, Understand how the eBPF verifier ensures that programs are safe to run, and how eBPF programs can be made portable across different kernel versions, Explore how eBPF components interact with Linux to dynamically change the operating system's behavior.