falcosecurity / rules
Falco rule repository
☆112Updated this week
Alternatives and similar repositories for rules:
Users that are interested in rules are comparing it to the libraries listed below
- Falco plugins registry☆89Updated this week
- Generate a variety of suspect actions that are detected by Falco rulesets☆101Updated this week
- Runtime detection and response for malicious events in Kubernetes workloads☆42Updated 11 months ago
- Response Engine for managing threats in your Kubernetes☆150Updated this week
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆80Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆80Updated 2 months ago
- A simple WebUI with latest events from Falco☆117Updated this week
- VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities☆102Updated 4 months ago
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆343Updated last year
- Connect Falco to your ecosystem☆575Updated this week
- Prometheus Metrics Exporter for Falco output events☆121Updated 2 months ago
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆42Updated last month
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆123Updated last week
- The Falco Project Community☆54Updated 3 weeks ago
- Kit for building Falco drivers: kernel modules or eBPF probes☆65Updated this week
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - for kind (and GKE, RKE2, AKS)☆32Updated this week
- Trivy's misconfiguration scanning engine☆218Updated last month
- Kubernetes focused container assessment and context discovery tool for penetration testing☆450Updated 8 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Runtime security plug to protect user containers☆65Updated 3 weeks ago
- A tool for in-depth analysis of container checkpoints☆109Updated this week
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆195Updated this week
- AI-generated remediations for Falco audit events☆69Updated last year
- Static Analysis Library for Containers☆198Updated last year
- Community managed Helm charts for running Falco with Kubernetes☆255Updated 2 weeks ago
- OCI hook to trace syscalls and generate a seccomp profile☆312Updated this week
- KBOM - Kubernetes Bill of Materials☆311Updated 4 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆77Updated last year
- ☆93Updated last month
- ✨🔐 CNCF Fuzzers☆121Updated 3 weeks ago