Resources

$./kernel-space

Research, deep-dives, and learnings from the Garnet team.

Featured

Threat ResearchNovember 28, 2025

From npm Install to Egress: A Runtime Account of Shai‑Hulud 2.0

We detonated a Shai-Hulud 2.0 npm package in CI, recorded over an hour of attack telemetry, and blocked exfiltration. A runtime account of a supply chain worm—from npm install to egress.

Garnet Red Team

Threat Research

Read Post →

Video

Dec 15, 2024

Interview with Rafael David Tinoco

Deep dive into Jibril's architecture with Rafael David Tinoco. Learn about the revolutionary in-kernel data query model, virtual maps, and how eBPF enables runtime security without the performance overhead of traditional tools.

eBPFChirp

Code runtime security for modern eng teams.

Product

Company

Security

Trust Center

Featured

From npm Install to Egress: A Runtime Account of Shai‑Hulud 2.0

Interview with Rafael David Tinoco

Product

Company

Security

Legal

Featured

From npm Install to Egress: A Runtime Account of Shai‑Hulud 2.0

Interview with Rafael David Tinoco