Rafael David Tinoco
Runtime Security and eBPF | Jibril Runtime Security Creator | Former Tracee Runtime Security Maintainer | Former Ubuntu Server Core Developer | Former: Aqua Security, Canonical, IBM Mainframe, IBM Cloud, Linaro, RedHat and Sun Microsystems.
I am currently developing Jibril Runtime Security, a high-performance runtime security tool with minimal overhead and zero event loss during peak loads. It includes built-in detection recipes, network policy enforcement, and supports containerized, Kubernetes, traditional server, and IoT environments.
Open Source Software Engineer with over 25 years of experience in IT, combining deep expertise in Linux kernel tracing & debugging, performance analysis and security introspection with emerging competencies in machine learning. Extensive experience in software maintenance and fixes for both userland and kernel components.
Category | Skills |
Programming Languages | C, Go, Python, eBPF, shell, Perl, and others. |
Linux Kernel | Kernel internals, subsystem architecture, driver development, security mechanisms. |
Security Expertise | Linux Runtime Security and OS patterns and detections. |
eBPF Knowledge | TC, XDP, Cgroup, LSM, Kprobes, Tracepoints, Trampolines. Libbpf internals, CO-RE relocations, portability, performance optimizations, all program types, map types and helpers. |
Systems Understanding | ISAs, OS APIs, ABIs, ISA calling conventions, hardware memory models and synchronization |
Debugging & Tracing | GDB, Crash, {u,k}probes, Systemtap, Perf, Ftrace, Valgrind |
Linux Subsystems | VFS, Networking, Block Device (SCSI/iSCSI), VM, Scheduling |
Systems Programming | Pthreads, networking, userland libraries |
Virtualization | QEMU/KVM internals, side-channel attack mitigation, VirtIO spec, vhost-user/vhost-host |
Hardware Architectures | x86 servers, HPC supercomputers, SPARC, ARM64, s390x |
Operating Systems | Linux (Red Hat, Debian, Ubuntu, Arch), Solaris, z/VM, z/OS USS, BSDs |
Community | Open Source repository & community management |
I currently work at Garnet, developing Jibril Runtime Security. The content on this website represents my personal views and analyses, shared to spread knowledge and ideas. It does not necessarily reflect my employer's opinions or positions on any products or documents discussed here.