Hey HN,<p>I am building a little tool using eBPF and Rust (for being fast and safe) to tackle task of collecting evidence for SOC 2 audits.<p>Anyone else out there feel like gathering all that audit data is a massive time sink? Would a tool that could automate a lot of it at the kernel level be something you'd actually use?<p>What are the biggest data collection headaches you've run into with SOC 2? Any thoughts on whether eBPF could be a good fit for this?<p>Just curious if this resonates with anyone else before diving too deep. Cheers for any insights!<p>Is this kind of tool useful for anyone?
Check <a href="https://aurva.io/" rel="nofollow">https://aurva.io/</a> It's not exactly this but data is one part of SOC 2 I guess