Real Time Threat Detection with Falco
Cloud infrastructure is complex. From hypervisors and containers in your own data centers to Managed Services or SaaS solutions in the cloud, there’s a vast attack surface to defend. This makes it more important than ever to proactively look for and alarm on anomalies and suspicious events.
The open source project Falco helps with detecting threats in real-time and is used by us for securing the NETWAYS Cloud platform. This talk gives an introduction into the use of Falco, its strengths and weaknesses according to our own experience with it, and a demo on how to use Falco and its accompanying tools to gain real-time insights into your IT landscape.
You will learn about Falco’s architecture and the way it detects anomalies and threats in real-time, and gain insights into its installation, configuration and how it compares to other solutions in the space, e.g. Tetragon.
Speaker
-
Daniel BodkyNETWAYS Managed Services GmbHDaniel is a Senior Platform Advocate from Germany who made his way from Systems Engineering via consulting to advocating for cloud-native solutions. He’s a huge fan of open-source, actively engaged in projects revolving around Kubernetes and cloud-native technologies, and loves to try out up-and-coming projects.