Infosec glossary entry

BPF

BPF:
Berkeley Packet Filter

Berkeley Packet Filter (BPF) is a low-level (compiled into a kernel state machine) packet filtering mechanism used in Unix-like operating systems to capture and analyze network traffic. BPF allows users to define specific criteria for capturing packets, enabling efficient monitoring and troubleshooting of network communications. By utilizing BPF, network administrators and security professionals can gain valuable insights into network behavior, detect anomalies, and enhance their overall security posture.

Related entries

Share 0
Tweet 0
Share 0

By jean-christoph

January 22, 2022

Network+, packet capture
Leave a Reply

Your email address will not be published. Required fields are marked

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}

this might interest you as well

ethics, incident response, resilience, security strategy

Lessons from Sun Tzu’s “The Art of War” in Cybersecurity: Timeless Wisdom or Outdated Tactics?

awareness training, Psychologie, ransomware, security awareness

Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity

AI, NIST, OWASP, risk management, threat intelligence

AI Cyber Security 2025: Key Threats and Essential Strategies for Your Business