Sysdig Falco v0.18.0 was released a while ago which I detected when I was using this tool and hence this blog. It has been some time since I last blogged about this open source behavorial activity monitor which has container support and a lot has changed in this version as well. What is Sysdig Falco? Sysdig Falco is an open source, behavioral activity monitor designed Read more about UPDATE: Sysdig Falco v0.18.0
UPDATE: Sysdig Falco v0.15.1
Three days ago, an updated version – Sysdig Falco v0.15.1 – was released. It has been some time since I last blogged about this open source behavorial activity monitor which has container support. This release remediates integration issues with Anchore by updating urllib3 and requests Python library versions in addition to others. Read more about UPDATE: Sysdig Falco v0.15.1
UPDATE: Sysdig Falco v0.15.0
Three days ago, an updated version – Sysdig Falco v0.15.0 – was released. It has been some time since I last blogged about this open source behavorial activity monitor which has container support. This release incorporates a lot of rule updates that are now also tagged the for MITRE ATT&CK Framework and patches CVE-2019-8339, a medium severity vulnerability. Read more about UPDATE: Sysdig Falco v0.15.0
UPDATE: Sysdig Falco v0.14.0
Recently, an updated version - Sysdig Falco v0.14.0 - was released. It has been some time since I last blogged about this open source behavorial activity monitor which has container support. Read more about UPDATE: Sysdig Falco v0.14.0
UPDATE: Sysdig Falco v0.10.0
Four weeks ago, I posted about Sysdig Falco v0.9.0. A week ago, the open source behavorial activity monitor which has container support was updated to Sysdig Falco v0.10.0. This release includes a number of improvements focused on making Falco easier to deploy, improvements with rules, and improvements in the system call events Falco supports. This release also contains an Read more about UPDATE: Sysdig Falco v0.10.0