Audit and container runtime security to detect anomalous activity
An example of how we can audit and detect anomalous activity in a microservices application running in Docker and Kubernetes using container runtime security.
Operations | Monitoring | ITSM | DevOps | Cloud
The Place Where Modern Operations & Technology Come Together
The latest News and Information on Containers, Kubernetes, Docker and related technologies.
Container forensics analysis and postmortem
This is how we can perform forensics and postmortem analysis after someone hacking into our container and downloading some malware. In this case was a Wordpress instance running on Docker in Kubernetes.
Container security policy configuration
A traditional security policy model doesn’t work with containers. The hard part is applying those policies to different containers as they change in your infrastructure. We need a security policy model that can adapt dynamically to orchestration platforms like Kubernetes and Cloud Native apps.
User activity auditing in containers
Auditing and logging automatically any command execution being run across your distributed environment is a must for container security best practices.
Dynamic DNS & Falco: detecting unexpected network activity
Since the inception of Falco, we’ve seen users write custom rules covering a number of different use cases. Because Falco is behavioral monitoring with a syntax that leverages system calls, you can write a rule for just about anything: opening a file, becoming root, or making a network connection.
Security and Monitoring with Istio - Take5
Kubernetes can be a great orchestration platform for your microservices but these services can grow complex and difficult to manage. Enter Istio, an integrated way to create a network of your services and manage load balancing, authentication, and more! Join us as we walk you through Istio and several ways it can help you wrangle your applications.
Introduction to Rancher and Kubernetes Online Training - November 15
Helm is a great framework for deploying Kubernetes applications, and in Rancher we've made it possible to leverage that framework to create a catalog of application blueprints that can be configured and deployed in a repeatable way.
Kubernetes: Securing Hybrid and Multi-Cloud Environments
Kubernetes is widely used to re-architect traditional applications. Many organizations first set up Kubernetes within their on-prem environment and then later expand to the public cloud. This hybrid environment often creates security and compliance challenges with workloads. Join this webinar to learn how to leverage universal security policy definition that works across a hybrid environment.
Container Logging & Devops: the Future of Kubernetes Integration
I hosted a webinar where I covered why logging is important, how to choose a logging provider. And then shared our experience of setting up logging on Kubernetes containers, the Kubernetes logging framework and the logging best practices we’ve implemented internally and supported our customers who run Kubernetes in production.
Falco 0.13.0 Released: Kubernetes Audit Events Support
We recently released Falco 0.13.0, which is probably the most exciting release since Falco’s 0.1.0 release almost two and a half years ago. With 0.13.0, we’re adding support for a second stream of events — Kubernetes Audit Events. This release also lays the groundwork for additional event sources to be easily added.