Add Falco for runtime monitoring (EKS, Fargate ECS and plain instances)

toniblyx / my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Apache License 2.0

8.98k stars 1.53k forks source link

Add Falco for runtime monitoring (EKS, Fargate ECS and plain instances) #83

Closed manuelbcd closed 1 year ago

manuelbcd commented 2 years ago

Hello, I'm a little bit confused since I don't see any specific tool for runtime security. Would it make sense to add Falco? It is an Open Source tool to secure containers, clusters and VMs, captures runtime events and trigger actions (alerts, integrations) based on it powerful rule engine.

I can do the PR but I would like to check first that I'm not missing anything here, is there any reason for non adding Falco?

FYI @toniblyx

Thank you

toniblyx commented 2 years ago

Hi @manuelbcd, I'm not adding container related tools or solutions to this list, but probably is time to do so in a separate category. Would you mind to send a PR with that? Thanks in advance.

ACRavelo commented 1 year ago

I can have it done by a programming AI.