Sysdig Site Search
Falco
Detect threats and anomalous activity across containers, hosts, Kubernetes and cloud with Falco open source security.
Open Source
Detect threats and anomalous activity across containers, hosts, Kubernetes and cloud with Falco open source security.
Getting started with runtime security and Falco
Discover how to get started with Falco to overcome the challenges of implementing runtime security for cloud-native workloads. If you...
Falco vs. AuditD from the HIDS perspective
In this blog, we will compare and contrast Falco vs. AuditD from a Host Intrusion Detection (HIDS) perspective. AuditD is...
Comparing GuardDuty & Falco on EKS
Read about the differences between Amazon GuardDuty and Falco for Amazon EKS to better understand what each tool does, the threats detected, and the metadata available for forensic analysis.
Detecting MITRE ATT&CK: Privilege escalation with Falco
The privilege escalation category inside MITRE ATT&CK covers quite a few techniques an adversary can use to escalate privileges inside...
ChatGPT as your Falco Consultant
Can OpenAI ChatGPT become a contributor for an open source project like Falco? Is this the end of GitHub Copilot?...
How to detect TOR network connections with Falco
TOR was created with the idea of anonymizing connections across the Internet, but as in other instances, this can be...
GKE security using Falco, Pub/Sub, and Cloud Functions
In this blogpost we will demonstrate how to build a complete GKE security stack for anomaly detection and to prevent...
Falco is the First Runtime Security Project to join CNCF Incubation
Falco, originally created by Sysdig in 2016, is approved to join the CNCF Incubator after a 257 percent increase in...
