Introduction to Sysdig Falco

Garrett Hyde (08.Jun.2018 at 11:30, 50 min)
Talk at OpenWest Conference 2018 (English - US)

Rating: 0 of 5

Sysdig falco is an open source, container security monitor designed to detect anomalous activity in your applications. Falco lets you continuously monitor and detect container, application, host, and network activity... all in one place, from one source of data, with one set of customizable rules. In other words, think snort + ossec + strace.

In this talk, I will discuss how to install falco, how to create monitoring rules, and how to respond to malicious activity.

Slides and example code will be provided via GitHub.

Who are you?

Claim talk

Talk claims have been moved to the new site.

Please login to the new site to claim your talk

Want to comment on this talk? Log in or create a new account or comment anonymously

Write a comment

Please note: you are not logged in and will be posting anonymously!
= five minus two
No comments yet.
© 2018