Observability and introspection in the cloud with Stratoshark

Stratoshark brings the familiarity of Wireshark’s deep visibility to cloud-native system calls and audit logs

Join Community
Sysdig unveils Stratoshark, “Wireshark for the Cloud
Sysdig unveils Stratoshark, the “Wireshark for the Cloud
Sysdig unveils Stratoshark, the “Wireshark for the Cloud
Sysdig unveils Stratoshark, the “Wireshark for the Cloud
Sysdig unveils Stratoshark, the “Wireshark for the Cloud
Sysdig unveils Stratoshark, the “Wireshark for the Cloud

About Stratoshark

Built by the co-creators of Wireshark – our founder Loris Degioanni, and our Director of open source Gerald Combs – Stratoshark unlocks unparalleled cloud visibility, allowing users to analyze system calls and logs with precision and simplicity.

By blending Wireshark’s rich packet analysis with Falco’s runtime security, Stratoshark empowers teams to troubleshoot faster, respond to incidents with confidence, and adapt to the rapidly evolving demands of cloud-native systems — all with the open source transparency that fosters innovation.

our VISION

Stratoshark builds upon the open source heritage of Wireshark and Falco and makes deep visibility into cloud workloads universally accessible.

Cloud Native Runtime Security
falco.org
About
cncf graduated
Created 2016.05.17
140m downloads
releases
0.40.0
Latest
kubernetes
security
containers
cncf
cloud-native
ebpf
hacktoberfest
falco
cloud-native
110+
Monthly Active
Contributors
Cartoon slice of pizza with large eyes, smiling and surrounded by pink hearts.Cartoon-style avatar of a character with bright pink hair, large expressive eyes, and a confident smile.Cute cartoon mushroom character waving with a smile, featuring a red cap with white spots.Smiling brown travel suitcase with handle and shoulder strap on purple background.Cartoon chicken with orange comb painting its feathers with a red brush on a purple background.Corgi dog wearing a brown beanie and aviator sunglasses against a blue background.Illustration of a smiling woman with wavy brown hair, glasses, and a black top.Cartoon pufferfish wearing headphones with angry expression on a blue background.Cartoon character with brown skin, wavy brown hair, blue sunglasses, and a red headband.Smiling blue and white robot character waving with one hand.Smiling orange cat face with closed eyes and whiskers.Corgi dog wearing a brown beanie and aviator sunglasses against a blue background.Close-up illustration of a young chimpanzee with a neutral expression on a green circular background.Illustration of a smiling zebra with large eyes on a teal circular background.Cartoon blue shark wearing purple sunglasses and holding a yellow and blue surfboard on a blue circle background.Cartoon character with medium skin tone, dark messy hair, glasses, red cheeks, and a surprised expression.

Our open source roots

The origin for our open source projects — Sysdig, Falco, and Wireshark — traces back to one fundamental need: making sense of complex, real-time network traffic for better security and operational insights.

Stratoshark comes from the same core philosophy: visibility into cloud workloads must be universal. Deep introspection into cloud workloads must be available to everyone and seamlessly integrated across hosts, containers, and cloud-native environments.

As an open source project, Stratoshark empowers organizations to dissect, troubleshoot, and secure cloud environments with precision and confidence.

THE ROAD AHEAD
Tab 1
Tab 2
Tab 3

Just as Wireshark became the industry standard for network packet analysis, Stratoshark strives to set the benchmark for system-level introspection and analysis in the cloud.

Proven in production on Linux and Kubernetes, Stratoshark leads the way in cloud security by extending introspection to platforms, like AWS CloudTrail, Okta, and GitHub, through Falco Plugins.

As security challenges grow in complexity, open source collaboration enables the industry to collectively address evolving threats. Stratoshark represents the next step in this journey — continuing the legacy from Wireshark to Sysdig and Falco, and now advancing deeper into cloud observability and introspection.

Sysdig donated Stratoshark to the Wireshark Foundation in May 2025 to ensure long-term stewardship, sustainability, and education for the project.

Having a technology as complex as Falco packaged together with professional support and a SaaS infrastructure allows us to focus on the integration instead of spending time on setup and maintenance.”

Security Engineer, BlaBlaCar
falco feeds by sysdig

Falco Feeds extends the power of Falco by giving open source-focused companies access to expert-written rules that are continuously updated as new threats are discovered.

learn more
Green background with a circular icon on the left and three bullet points listing: Automatically detect threats, Eliminate rule maintenance, Stay compliant, with three black and white cursor arrows pointing at the text.

Get started with Stratoshark today

Abstract geometric logo composed of intersecting diagonal lines forming a stylized letter F and X in grayscale.
See how Stratoshark works

Download and learn how to use Stratoshark

Icon of a gray document with black horizontal lines representing text.
Join the community

Connect with Wireshark and Stratoshark users on Discord

Gray gear with a shield in front symbolizing security or protection in settings.
Get started with Stratoshark

Learn how to detect SCAP files in Stratoshark

Like what you see?

GET A DEMO