Falco
The cloud-native solution for threat and anomaly detection, created by Sysdig and contributed to the CNCF.
READ MORE
open source
Security built in the open and shaped by the community.
At Sysdig, we pioneered the open source tools defenders trust. Be part of the community unifying Falco, sysdig OSS, Wireshark, and Stratoshark.
Join Community >|
A legacy of open innovation.
A commitment to doing it right.
The future of security is open.
At Sysdig, we believe that security – done right – delivers visibility, trust, and control to the people on the front lines: defenders.
That belief runs deep in our DNA. Our founder, Loris Degioanni, co-created Wireshark alongside Gerald Combs, then went on to build sysdig OSS and Falco, now the standard for cloud threat detection. Their work helped shape how the world observes, understands, and secures systems — from packets to containers to the cloud.
Today, we continue that legacy by investing in projects like Falco and Wireshark, helping to secure the future of innovation in the open, and for everyone.
Security is a team sport. Attackers collaborate, so defenders must too — with shared tools, open standards, and a strong community. That’s why we created projects like Falco and Wireshark, now core to threat detection and network analysis. With Stratoshark, we’re taking that legacy to the cloud, bringing Wireshark-level visibility to cloud-native systems.”
Loris Degioanni, CTO & Founder, Sysdig
500+
detection
rules contributed
rules contributed
150k
lines of code donated to
the CNCF
the CNCF
127
hours of workshops & training
provided
provided
Projects we support
We partner with the community to create the open tools that defenders trust — from runtime to compliance.
I've worked with Falco for a couple of years, and it offers both the flexibility and extensibility that we need. There’s no smoke and mirrors – when you look at a Falco rule, you know exactly what it’s doing.”
“
Falco was exactly what we needed when we first started. It gave us the visibility and runtime protection to ensure that our security was operating as expected. It also helped us uncover critical issues we weren't aware of, like insecure internal actions.”
“
I really like that Sysdig is so active with open source. Sysdig has open source projects for both security and monitoring. Organizations can deploy both and run them for free. Being a good community member and driver is important to me.”
“
communities we love
From runtime security to system visibility, we actively contribute to the projects that matter. We’re proud to support communities that keep open innovation moving forward.
Join the Sysdig open source community
Sysdig is growing fast — and so is the opportunity to make a meaningful impact on the future of cloud security.
Whether you're a builder, defender, designer, or dreamer, we want to hear from you.
Join Community >|
