aa-ebpf 0.0.1-alpha.9

eBPF-based kernel-level monitoring hooks for Agent Assembly

//! Kprobe handler for `sys_read`.
//!
//! Intercepts file read operations to detect data exfiltration from
//! sensitive files after they have been opened.