Sysdig Site Search
Aligning Falco’s Cloudtrail Rules with MITRE ATT&CK
This blog will explain how Falco’s Cloudtrail plugin rules can be aligned with MITRE ATT&CK Framework for Cloud. One important...
Sysdig’s Falco joins the Cloud Native Computing Foundation as a CNCF Sandbox Project.
First Runtime Container Security Project joins CNCF, helping to make cloud-native architectures more secure SAN FRANCISCO, October 10, 2018 –...
Falco Threat Detection Extends to gVisor to Monitor Highly Sensitive Workloads
gVisor users can now run Falco for increased security and alerting of container workloads SAN FRANCISCO — September 15, 2022...
Extending Falco for Gitlab
Many are familiar with how GitLab leverages Falco in its Package Hunter project to detect threats through system call monitoring....
Falco joins CNCF Sandbox.
Security is a key consideration for any organization seeking to standardize and scale their cloud-native platforms. Falco, the behavioral activity...
Kubernetes Security Logging with Falco & Fluentd.
Kubernetes security logging primarily focuses on orchestrator events. The Kubernetes documentation provides a good starting point for auditing events of...
Kubernetes run-time security: Automate Sysdig Falco deployment using Helm charts
So, you want to implement run-time security in your Kubernetes cluster? If you are looking for an open-source tool, obviously...
How to implement an open source container security stack (part 1).
Container security is top-of-mind for any organization adopting Docker and Kubernetes, and this open source security guide is a comprehensive...
Falco 0.13.0 Released: Kubernetes Audit Events Support
We recently released Falco 0.13.0, which is probably the most exciting release since Falco’s 0.1.0 release almost two and a...
Multi-cluster security with Falco and AWS Firelens on EKS & ECS
In this blog post, we are going to teach you how to aggregate all Kubernetes security events across your AWS...