Falco Alternatives

Similar projects and alternatives to falco

  • trivy

    falco VS trivy

    Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets

  • OSQuery

    falco VS OSQuery

    SQL powered operating system instrumentation, monitoring, and analytics.

  • Scout APM

    Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  • Kyverno

    falco VS Kyverno

    Kubernetes Native Policy Management

  • istio

    falco VS istio

    Connect, secure, control, and observe services.

  • gatekeeper

    falco VS gatekeeper

    Gatekeeper - Policy Controller for Kubernetes

  • loki

    falco VS loki

    Like Prometheus, but for logs.

  • grype

    falco VS grype

    A vulnerability scanner for container images and filesystems

  • SonarQube

    Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.

  • kube-bench

    falco VS kube-bench

    Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

  • Vault

    falco VS Vault

    A tool for secrets management, encryption as a service, and privileged access management

  • k9s

    falco VS k9s

    🐶 Kubernetes CLI To Manage Your Clusters In Style!

  • sealed-secrets

    A Kubernetes controller and tool for one-way encrypted Secrets

  • Grafana

    falco VS Grafana

    The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

  • prometheus

    falco VS prometheus

    The Prometheus monitoring system and time series database.

  • Keycloak

    falco VS Keycloak

    Open Source Identity and Access Management For Modern Applications and Services

  • cert-manager

    Automatically provision and manage TLS certificates in Kubernetes

  • SonarQube

    falco VS SonarQube

    Continuous Inspection

  • Sysdig

    falco VS Sysdig

    Linux system exploration and troubleshooting tool with first class support for containers

  • keda

    falco VS keda

    KEDA is a Kubernetes-based Event Driven Autoscaling component. It provides event driven scale for any container running in Kubernetes

  • checkov

    falco VS checkov

    Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

  • cloud-custodian

    falco VS cloud-custodian

    Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better falco alternative or higher similarity.

Suggest an alternative to falco

falco reviews and mentions

Posts with mentions or reviews of falco. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-06-16.
  • 9 Tools Every Platform Engineer Should Know
    5 projects | dev.to | 16 Jun 2022
    Falco is a security-focused Kubernetes utility that identifies suspicious behavior in your containers. It inspects containers with a particular emphasis on kernel system calls. It also employs a solitary set of rules, which are needed to keep track of the container, application, host, and network.
  • [DevOpsSec)How do you manage container images scanning in your CI/CD pipelines ?
    2 projects | reddit.com/r/devops | 16 Jun 2022
  • Getting started developing Falco
    7 projects | dev.to | 11 May 2022
    falcosecurity/falco, including the rule engine, rules, and support for any kind of output, such as standard output, file output, gRPC, and more. If you're not yet familiar with the overall Falco architecture, you can go into detail by reading the previous blog post.
    7 projects | dev.to | 11 May 2022
    Get started in Falco.org
  • Threat Detection on EKS – Comparing Falco and GuardDuty For EKS Protection
    5 projects | dev.to | 6 May 2022
    Falco, a CNCF project, is a common open source tool used to perform similar threat detection capabilities within Kubernetes clusters. Falco monitors system calls from the Linux kernel for the majority of its analysis. It is also preloaded with community maintained rule sets.
  • Introducing PacketStreamer: Distributed Packet Capture for Cloud Native Platforms
    3 projects | dev.to | 12 Apr 2022
    One foundation of a good cybersecurity practice is the ability to capture attack actor TTPs (Tactics, Techniques, and Procedures) from across and behind the attack surface. Tools such as Sysdig Falco capture TTP signals from running workloads (process changes, filesystem access, etc.), and can give indications of local compromise, but these signals alone only tell the late-stage story of an attack event.
  • Falco – Cloud Native Runtime Security
    1 project | news.ycombinator.com | 17 Feb 2022
  • Detecting and mitigating CVE-2021-4034: “Pwnkit” local privilege escalation
    1 project | reddit.com/r/netsec | 28 Jan 2022
    If you’re impacted by this CVE, you should apply the latest security patches from their Linux distributions to correct the issue. If that isn’t possible in your environment, use a runtime detection engine to detect it, Falco can help you detect if you are impacted by CVE-2021-4034 with the Falco rule.
  • CVE-2022-0185: Detecting and mitigating Linux Kernel vulnerability causing container escape
    1 project | reddit.com/r/netsec | 21 Jan 2022
  • Top 200 Kubernetes Tools for DevOps Engineer Like You
    84 projects | dev.to | 15 Jan 2022
    TerraScan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. klum - Kubernetes Lazy User Manager Kyverno - Kubernetes Native Policy Management https://kyverno.io kiosk - kiosk office Multi-Tenancy Extension For Kubernetes - Secure Cluster Sharing & Self-Service Namespace Provisioning kube-bench - CIS Kubernetes Benchmark tool kube-hunter - Pentesting tool - Hunts for security weaknesses in Kubernetes clusters kube-who-can - Show who has RBAC permissions to perform actions on different resources in Kubernetes starboard - Kubernetes-native security toolkit Simulator - Kubernetes Security Training Platform - Focussing on security mitigation RBAC Lookup - Easily find roles and cluster roles attached to any user, service account, or group name in your Kubernetes cluster https://fairwinds.com Kubeaudit - kubeaudit helps you audit your Kubernetes clusters against common security controls Gangway - An application that can be used to easily enable authentication flows via OIDC for a kubernetes cluster Audit2rbac - Autogenerate RBAC policies based on Kubernetes audit logs Chartsec - Helm Chart security scanner kubestriker - Security Auditing tool Datree - CLI tool to prevent K8s misconfigurations by ensuring that manifests and Helm charts follow best practices as well as your organization’s policies Krane - Kubernetes RBAC static Analysis & visualisation tool Flaco - The Falco Project - Cloud-Native runtime security Clair - Vulnerability Static Analysis for Containers Anchore Cli - Coomand Line Interface built on top of anchore engine to manage and inspect images, policies, subscriptions and registries Project Quay - Container image registry designed to boost the security of your repositories via vulnerability scanning and tight access control Kubescape - Tool to test if Kubernetes is deployed securely according to multiple frameworks: regulatory, customized company policies and DevSecOps best practices, such as the NSA-CISA and the MITRE ATT&CK®
  • How to log the `kubectl exec` event
    1 project | reddit.com/r/kubernetes | 4 Jan 2022
    Falco has a default rule to detect kubectl exec: https://github.com/falcosecurity/falco/blob/master/rules/k8s_audit_rules.yaml
  • GCP security best practices
    2 projects | dev.to | 29 Nov 2021
    Luckily, cloud native security tools like Falco and Cloud Custodian can guide you through these Google Cloud Platform security best practices, and help you meet your compliance requirements.
  • Container security best practices: Comprehensive guide
    17 projects | dev.to | 16 Nov 2021
    Falco is capable of monitoring the executed system calls and generating alerts for suspicious activity. It includes a community-contributed library of rules, and you can create your own by using a simple syntax. Kubernetes audit log is also supported.
  • Building a "complete" cluster locally
    24 projects | reddit.com/r/kubernetes | 31 Oct 2021
    Set up Falco to monitor / alert on suspicious activity
  • Kubernetes Security Checklist 2021
    28 projects | dev.to | 18 Oct 2021
    Use third-party security monitoring tool on all cluster nodes (Falco, Sysdig, Aqua Enterpise, NeuVector, Prisma Cloud Compute)

Stats

Basic falco repo stats
26
4,951
9.7
7 days ago

falcosecurity/falco is an open source project licensed under Apache License 2.0 which is an OSI approved license.

SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
Find remote jobs at our new job board 99remotejobs.com. There are 2 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.