The flexible rules engine allows you to describe any type of host or container behavior or activity.
You can immediately respond to policy violation alerts and integrate Falco within your response workflows.
Falco out-of-the box rules alert on malicious activity and CVE exploits.
We are a CNCF incubated Project