-
**Is your feature request related to a problem?**
Support security event logs from Kubernetes audit logs
https://opensearch.slack.com/archives/C051Y637FKK/p1680689503576889
**What solution would …
-
## Description
On a newly deployed VM on Azure or AWS, journald-related units are failing:
```
# systemctl list-units --failed
UNIT LOAD ACTIVE SUB DESCRIPTIO…
-
After upgrading to falco 0.38.0 some k8s specific fields are not pupulated any more. E.g. k8s.ns.name amd k8s.pod.name.
Enviroment ist k8s 1.28.6 with the following runtime components:
* dock…
-
So we can host a website however we want, but ideally, all of the content should be controlled from an open-source repository.
If you look at [The Falco](https://falco.org/) it's simply a Hugo a w…
-
Motivation
I hope Falco can support raw log output, such as all process creation, file read/write operations, etc. This can help in better contextual analysis. I also hope that the logs of proces…
-
### Application contact emails
jliburdi@brex.com
### Project Summary
Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.
### Project Description
…
-
**Describe the bug**
I want to install falco in K8s using helm. I try the default and legacy driver but they all failed.
**How to reproduce it**
First I read the official document(ht…
-
I'm running logdna-agent in kubernetes. After upgrading from version 2.2.4 to 3.2.0, I noticed that with the new version the container memory usage constantly increases overtime, up to the configured …
-
**Motivation**
I would like to have High Avaibility for my falco audit eks plugin which works as one pod in eks cluster. I don’t want to miss any of the events from eks if my pod will be failing or c…
-
![secure software factory ref arch](https://user-images.githubusercontent.com/622577/166719426-30dc7cf3-71f8-4297-aee7-c77d3000b7a1.png)
SSF is an implementation of Secure Software Factory Ref Arch…