falco-talon
falcosidekick
falco-talon | falcosidekick | |
---|---|---|
1 | 2 | |
83 | 516 | |
- | 1.2% | |
9.4 | 9.5 | |
3 days ago | 6 days ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
falco-talon
-
NSA and CISA have updated their kubernetes hardening guide
I was browsing Slack the other day, and saw this repo: https://github.com/Issif/falco-talon
falcosidekick
-
Manage Falco easier with Giant Swarm App Platform
How does Falco do that? Based on a set of rules that Falco interprets at startup time, it waits for events and syscalls that would trigger one of those rules. When a rule is triggered, Falco raises an alert and, thanks to applications like Falco Sidekick, allows teams to react accordingly.
-
Threat Detection on EKS – Comparing Falco and GuardDuty For EKS Protection
Falco can emit its findings to stdout, a file, syslog, or custom endpoints with "Program Output" using bash. Alternatively, Falcosidekick is an extra app that receives Falco alerts from multiple clusters and forwards them to a variety of outputs concurrently. Falcosidekick has a large number of custom destinations, so it may reduce the need to write custom integrations for existing destinations like a SIEM.
What are some alternatives?
cilium - eBPF-based Networking, Security, and Observability
containers-roadmap - This is the public roadmap for AWS container services (ECS, ECR, Fargate, and EKS).
trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
falco - Cloud Native Runtime Security
Gravitational Teleport - The easiest, and most secure way to access and protect all of your infrastructure.
kubescape - Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
apptestctl - Command line tool for using the Giant Swarm app platform in integration tests.
authelia - The Single Sign-On Multi-Factor portal for web apps
plugins - Falco plugins registry
kubectl-gs - kubectl plugin helping with custom resources by Giant Swarm
terraform-provider-aws - The AWS Provider enables Terraform to manage AWS resources.