Sysdig Site Search
Open Source
Founded as an open source company, Sysdig creates and consistently contributes to open source projects.
Sysdig Doubles Down on Open Source Commitment with the First eBPF Contribution to the CNCF
Company contributes the sysdig kernel module, eBPF probe, and Falco libraries, more than 100,000 hours of engineering time SAN FRANCISCO...
tj-actions/changed-files with Falco Actions
A compromise (CVE-2025-30066) was discovered in the popular GitHub Action tj-actions/changed-files on March 14, 2025. It impacted tens of thousands...
Extending Falco for Bitcoin
Plugins are shared libraries that conform to a documented API, hooking into the core functionalities of Falco to allow things...
Detecting MITRE ATT&CK: Defense evasion techniques with Falco
The defense evasion category inside MITRE ATT&CK covers several techniques an attacker can use to avoid getting caught. Familiarizing yourself...
How Falco and Wireshark paved the way for Stratoshark
The origins of Sysdig, Falco, and Wireshark can be traced back to one fundamental need: making sense of complex, real-time...
Announcing Falco 0.2.0
Today we released version 0.2.0 of Falco. Falco is our new, open source, behavioral security monitoring agent. The major change...
Falco 0.15.0 released.
We are happy to announce the release of Falco 0.15.0. This release incorporates a number of improvements, as well as...
How to detect MFA spamming with Falco
Threat actors continue to evolve methods to access valid credentials using new techniques such as multi-factor authentication or MFA spamming...
Announcing Falco 0.3.0
On Friday we released Falco 0.3.0. The biggest change in this release is significantly reduced cpu usage, involving changes in...
