Dario Sindičić

Dario Sindičić is a DevOps engineer with a background in both development and systems engineering. His career started with competitive programming, after which he entered the Linux ecosystem, learning more about open-source technologies.

He is a contributor to many open-source projects, and his everyday tasks include resolving strange and peculiar issues.

Talk: When Containers Go Rogue

In this talk, he will present a command anomaly detection approach based on a neural network model. He will leverage a eBPF instrumentation of the exec system call to construct a dataset and to capture command executions in real time during evaluation.

Experimental results will demonstrate that the proposed method is effective at detecting remote code execution attacks in containerized Kubernetes environments.

Kubernetes clusters consist of worker nodes that run applications in isolated environments known as containers. Despite this isolation, containers remain susceptible to well-known attack vectors. One particularly critical threat is remote code execution (RCE), which enables attackers to execute arbitrary commands on a compromised system.

Get your free ticket here https://www.entrio.hr/en/event/dorscluc-2026-28348 and see you at the DORS/CLUC 31!