-
Currently, the collector component of stackrox uses a kernel module or eBPF probe (referred to as drivers from this point on), in order to gather information on running processes, network connections,…
-
See https://github.com/falcosecurity/cncf-green-review-testing?tab=readme-ov-file#summary-cncf-green-reviews-cluster-requirements
| Knode | Falco Driver | Namespace | Node Selector …
-
#### Description
Collaboration between TAG and Falco has been discussed for a while now and Falco maintainers have done an introductory presentation of the tool at one of the recent TAG project mee…
-
**Describe the bug**
Field `user.loginname` is showing as `N/A` when using `modern-bpf`
```
2024-01-02T22:14:53: Alert Interactive root user activity detected (user.loginuid=1002 user.loginname…
ycaoT updated
5 months ago
-
We need to streamline and structure our GitHub Actions. Currently, all required use cases can (somehow) be done with our current set of actions. They do not need to be re-written completely, but we ne…
-
**Describe the bug**
When trying to use `sysdig --bpf ... ` I was unable to download the prebuilt bpf probe, and compiling the bpf probe resulted in the error.
**How to reproduce it**
run `…
-
**Motivation**
We do not support prebuilt drivers for photonOS.
**Feature**
Support prebuilt drivers for photonOS.
**Alternatives**
None
**Additional context**
With https://github…
-
Im not too familiar with mul_mat, but it seem's like it is the part of the process that takes the longest time, is that able to be optimized even further?
The current speed is great for a falcon mo…
-
Describe the bug:
falco when running on few clusters as a Daemon set throws the below error on replicaset_handler_state and k8s_deployment_handler_state eventually the falco container pods kee…
-
# Falco 0.36.2 Release
Will keep this issue updated with the current status and progress.
## Date
Release date: 2023-10-27
## Release Steps
The process is described in [this document](h…