Introduction to Sysdig Falco

Garrett Hyde (08.Jun.2018 at 11:30, 50 min)
Talk at OpenWest Conference 2018 (English - US)

Rating: 0 of 5

Sysdig falco is an open source, container security monitor designed to detect anomalous activity in your applications. Falco lets you continuously monitor and detect container, application, host, and network activity... all in one place, from one source of data, with one set of customizable rules. In other words, think snort + ossec + strace.

In this talk, I will discuss how to install falco, how to create monitoring rules, and how to respond to malicious activity.

Slides and example code will be provided via GitHub.

Who are you?

Claim talk

Talk claims have been moved to the new site.

Please login to the new site to claim your talk

Comments closed.
No comments yet.
© 2019