Security checks for events using Sysdig Falco (DEMO Only)

In this scenario we will see how we can detect a sensitive file read operation occurring inside a container in a Kubernetes cluster.

We will see how to apply automated defense to automatically stop the attack and apply the fix in near-realtime.

DEMO

Container Security Monitoring - Automated Defense

source: https://www.youtube.com/watch?v=zd0ksjZI5Vk