The Official Sysdig Blog

Kubernetes Security Logging with Falco & Fluentd

By on April 4, 2018

Kubernetes security logging primarily focuses on orchestrator events. The Kubernetes documentation provides a good starting point for auditing events of the Kubernetes API. Using Sysdig Falco and Fluentd can provide a more…

Read More →

Kubernetes Security Context, Kubernetes Security Policy and Kubernetes Network Policy – Kubernetes Security Guide (Part 2)

By on April 4, 2018

Once you have defined Kubernetes RBAC: users and services credentials and permissions, we can start leveraging Kubernetes orchestration capabilities to configure security at the pod level. In this part, we will learn…

Read More →

Kubernetes RBAC and TLS certificates – Kubernetes Security Guide (Part 1)

By on April 4, 2018

Kubernetes RBAC security context is a fundamental part of your Kubernetes security best practices, as well as rolling out TLS certificates / PKI authentication for connecting to the Kubernetes API server and…

Read More →

Kubernetes Security Guide

By on April 4, 2018

In this Kubernetes security guide we cover the most significant aspects of implementing Kubernetes security best practices. Kubernetes security, like monitoring or building a CI/CD pipeline is becoming a must as a…

Read More →

5 Changes Containers Bring to PCI Compliance

By on March 28, 2018

Containers have been adopted faster than any previous enterprise technology, and for good reasons. They’re portable, provide robust security through isolation, and allow application teams to develop better services faster. However, the…

Read More →

What is a CrashLoopBackOff? How to Alert, Debug / Troubleshoot and Fix Kubernetes CrashLoopBackOff Events

By on March 27, 2018

In this blog we’re going to talk about how to visualize, alert, and debug / troubleshoot a Kubernetes CrashLoopBackOff event. As all veteran Kubernetes users know, Kubernetes CrashLoopBackOff events are a way…

Read More →

Prometheus Monitoring and Sysdig Monitor: A Technical Comparison

By on March 26, 2018

Since Sysdig now offers Prometheus support in addition to our commercial monitoring product Sysdig Monitor, users have been looking for a better understanding of how Prometheus monitoring and Sysdig Monitor compare and…

Read More →

Detecting Cryptojacking with Sysdig’s Falco

By on March 13, 2018

The latest rage amongst attackers appears to be cryptojacking; rather, exploiting a system, and installing cryptocurrency miners to earn money from the exploited host’s CPU power. We’ve talked about these types of…

Read More →

Getting Started Writing Falco Rules

By on March 7, 2018

Sysdig’s Falco is a powerful behavioral activity monitoring tool to detect abnormal behavior in your applications and containers. While it comes with 25 rules for common best practices, you’ll quickly want to…

Read More →

Sending Kubernetes & Docker events to Elasticsearch and Splunk using Sysdig

By on March 6, 2018

In this article we are going to see how to aggregate Kubernetes / Docker events and alerts into a centralized logs system like Elasticsearch and Splunk. Logging engines are a great companion…

Read More →