Sysdig Site Search
Day 2 Falco Container Security – Tuning the Rules
In the world of cybersecurity, noise is a critical issue associated with Day 2 operations. The complex nature of noise...
Pet surveillance with Falco – Home Security
If you are here, chances are that your pet is always running around, destroying things in your sweet house. We...
Active Kubernetes security with Sysdig Falco, NATS, and Kubeless.
The composability of Cloud Native platforms has dramatically changed the way we think about the management of these platforms. In...
Cryptojacking detection with Sysdig’s Falco
The latest rage amongst attackers appears to be cryptojacking; rather, exploiting a system, and installing cryptocurrency miners to earn money...
How to identify malicious IP activity using Falco
One of the most common security use cases, is the ability to identify connections generated by malicious actors, or internal...
Protect your Docker containers using Falco security rules.
Falco is an open source project for intrusion and abnormality detection for Cloud Native platforms such as Kubernetes or Docker....
Falco 0.8.1 Released
We just released Falco 0.8.1. This has a great list of new features and rule improvements. Rule Improvements The ruleset...
Sysdig contributes Falco’s kernel module, eBPF probe, and libraries to the CNCF
Today, I’m excited to announce the contribution of the sysdig kernel module, eBPF probe, and libraries to the Cloud Native...
How to use Atomic Red Team to test Falco rules in K8s
The best way to know if something works is to try it out. Ensuring that your security products are actually...
Automated Falco rule tuning
We recently released the automated Falco rule tuning feature in Sysdig Secure. Out-of-the-box security rules are a double-edged sword. On...