Falco Kraken Discovery Labs

Stay Ahead of Evolving Threats with Falco Feeds by Sysdig

Cloud environments face evolving threats, requiring constant vigilance and real-time response. In our 60-minute, instructor-led workshop, you'll dive into Falco Feeds by Sysdig —a managed solution for open-source Falco that delivers continuous threat detection updates with powerful threat intelligence. Learn how to operationalize Falco for comprehensive cloud and Kubernetes security without the hassle of manual rule curation.

This Workshop is perfect for anyone looking to deepen their expertise in Kubernetes and cloud-native security. Whether you're new to the field or an experienced Kubernetes threat detection engineer, you'll discover how to leverage Falco to craft detection rules that extend MITRE ATT&CK coverage. By the end of the session, you'll clearly understand managing threat detection in Kubernetes, the challenges of validating complex rule sets, and the confidence that the Falco project will evolve to tackle your most pressing security concerns.

Highlights:

• Strengthen Your Security Posture: Implement your own custom detection and response rules in Falco, and learn how these rules can address the MITRE ATT&CK framework using Atomic Red Team (ART) and Falco side-by-side.
• Real-Time Threat Detection: Get hands-on with creating and operationalizing security rules aligning with major frameworks like MITRE, NIST, HIPAA, and SOC2, ensuring compliance while reducing false/positive detections and unwanted “noise.”
• Automated Defense Mechanisms: Explore the power of automated Falco updates with expanded threat intelligence for production systems with falcoctl. Do all this without disrupting your existing cloud-native setup and automation pipelines.
• Introduction to Falco Feeds by Sysdig: Understand how Falco Feeds enhances open-source Falco with automated, continuously updated security rules powered by the world-renowned Sysdig Threat Research Team (TRT).

Don’t miss out on this opportunity to master cloud-native threat detection and response (CDR) with Falco Feeds at the center of your cloud environment. Register now to secure your spot!