Search results for: falco


Cloud Native Live: Falco – A peek into the people and the latest features

Posted on August 1, 2023

Addressing community challenges and feedback is a big part of working on open source projects. In response to our recent community survey, the 0.35 release delivers improved performance, new metrics, image signing, and other great goodies….



Cloud Native Live: Prometheus + Falco: The Swiss Army Knife for SREs

Posted on May 24, 2023

Despite working for different areas, Prometheus – an open source event monitoring and alerting tool – and Falco – an open source runtime threat detection tool – complement each other to build a reliable monitoring and…


CNCF On-Demand Webinar:Falcoctl – easy management of the lifecycle of your rules & plugins for Falco

Posted on April 6, 2023

If you’ve been in the cloud native community, chances are you’ve heard the term ‘ctl’ (pronounced cuttle or c-t-l). Just as Kubectl allows you to run commands against Kubernetes clusters, Falcoctl is a command line tool…


CNCF On demand webinar: gVisor+Falco-Strengthen K8s & container security without losing visibility

Posted on October 6, 2022

gVisor is an application kernel that provides an additional layer of isolation between running applications and the host operating system. This extra layer greatly improves the security of workloads, but can impede container visibility. Discover how…


Getting started with gVisor support in Falco

Posted on September 27, 2022

Project post originally published on the Falco blog by Luca Guerra, Lorenzo Susini, Vicente J. Jiménez Miras In version 0.32.1, Falco first introduced support for gVisor. So, what is it and how can we use it? gVisor, quoting the official…


CNCF On-Demand Webinar: Extend Falco with Plugins: Trigger Alerts with any Stream of Events

Posted on April 7, 2022

Falco is the de facto Runtime Security agent for Kubernetes environments, by capturing syscalls it can see everything at Kernel level. With its’ new Plugin system, you can now apply the logic of rules to any…



Cloud native observability and security analytics with SysFlow and Falco

Posted on January 14, 2022 | Frederico Araujo and Teryl Taylor

Guest post originally published on Falco’s blog by Frederico Araujo and Teryl Taylor, IBM Research Hello, fellow Falcoers! This blog introduces you to a new open system telemetry format and project called SysFlow. The project has deep…


Discover how GitLab uses Falco to detect abnormal behavior in code dependencies

Posted on December 10, 2021

Project post originally published on the Falco Blog by Nate Magee and Vicente J. Jiménez Miras GitLab leverages Falco to detect software supply chain attacks with Package Hunter GitLab covers the entire software development lifecycle in a…