Falco

Falco acts as a security camera detecting abnormal behavior, intrusions, and data theft in real time.

Overview

Falco is a cloud native runtime security tool for Linux operating systems. It is designed to detect and alert on abnormal behavior and potential security threats in real-time. At its core, Falco is a kernel monitoring and detection agent that observes events, such as syscalls, based on custom rules. Falco can enhance these events by integrating metadata from the container runtime and Kubernetes. The collected events can be analyzed off-host in SIEM or data lake systems.

Highlights

Falco, originally created by Sysdig, is a graduated project under the Cloud Native Computing Foundation (CNCF) used in production by various organisations. For detailed technical information and insights into the cyber threats that Falco can detect, visit the official Falco website.

Details

Sold by

Sysdig

Unlock automation with AI agent solutions

Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.

Explore AI agent solutions

Features and programs

Financing for AWS Marketplace purchases

AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.

View financing details

Pricing

Falco

Info

View purchase options

This product is available free of charge. Free subscriptions have no end date and may be canceled any time.

Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.

Vendor refund policy

Not applicable.

How can we make this page better?

We'd like to hear your feedback and ideas on how to improve this page.

Legal

Vendor terms and conditions

Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

Content disclaimer

Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

Usage information

Info

Version

Delivery details

EKS add-on

Supported services: Learn more

Amazon EKS

EKS add-on

An add-on is software that provides supporting operational capabilities to Kubernetes applications but isn't specific to the application. This includes software like observability agents or Kubernetes drivers that allow the cluster to interact with underlying AWS resources for networking, compute, and storage. Add-on software is typically built and maintained by the Kubernetes community, cloud providers like AWS, or third-party vendors. Amazon EKS add-ons provide installation and management of a curated set of add-ons for Amazon EKS clusters. All Amazon EKS add-ons include the latest security patches and bug fixes, and are validated by AWS to work with Amazon EKS. Amazon EKS add-ons allow you to consistently ensure that your Amazon EKS clusters are secure and stable and reduce the amount of work that you need to do to install, configure, and update add-ons.

Version release notes

Bump falcoctl to 0.11.4
Fixed issue with Falco main image

Additional details

Usage instructions

This EKS add-on doesn't require further configuration for a default configuration.

Support

Vendor support

Please see Falco.org or github.com/falcosecuirty/falco for docs and best practices.

AWS infrastructure support

AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

Get support

Similar products

Sysdig Cloud Security and Observability

By Sysdig

In the cloud, every second counts. Sysdig's cloud-native application protection platform (CNAPP) stops cloud threats in real time and prioritizes the risks that matter most. Our CNAPP correlates signals across cloud workloads, identities, and services to uncover hidden attack paths. Sysdig secures your AWS cloud and workload with top-rated support for services including Amazon ECS, Amazon EKS, and AWS Fargate, and integrations with AWS security solutions including AWS Security Hub, Amazon GuardDuty, and Amazon Security Lake.

View product

Hardened SOC2 Compliant eks-node with FCG Shield

By Automated Cloud Technologies

Amazon EKS Node - EKS v1.24 This product has charges associated with it for use of FCG Shield. This product extends the functionality of AWS EKS and without it, this product provides the same fully configured and enabled cloudwatch agent with eBPF monitoring using falco, logging to cloudwatch . Please note that AWS EKS might require its own license for full functionality with this listing. FCG Shield v3.0.2 SOC2 PCI Container Security via Falco EBPF Cloudwatch Configured for All monitoring of node

View product

Hardened SOC2 eks-al2023-node-1.29-v20240814 FCG Shield by AutoCloudTek

By Automated Cloud Technologies

This product has charges associated with it for use of FCG Shield configuration by AutoCloudTek Hardened SOC2 eks-al2023-node-1.29-v20240814 FCG Shield by AutoCloudTek Amazon EKS Node - eks-al2023-node-1.29-v20240814 FCG Shield v3.0.2 by AutoCloudTek Drop in replacement for amazon-eks-node No additional configuration required SOC2 PCI Container Security via opensource Falco EBPF Cloudwatch Configured for All monitoring of node

View product

Otomi

By Otomi by Red Kubes

Add developer- and operations-centric tools, automation and self-service on top of Kubernetes.

View product

Customer reviews

Leave a review

Ratings and reviews

Info

0 ratings

5 star

4 star

3 star

2 star

1 star

0 AWS reviews

No customer reviews yet

Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.