Container Security Monitoring using Open Source - All Day DevOps 2018

View Slide

•
•
•
•
•
•
•
About Me

View Slide

•
•
•
•
•
•
•
What we are going to learn

View Slide

Importance of container security monitoring

View Slide

•

•

•
•
Why use container security monitoring?

View Slide

•
•
•
•
•
Container security monitoring

View Slide

•
a.
b.
c.
How to do container security monitoring

View Slide

●
○
●
○
●
○
○
How to do container security monitoring

View Slide

•
•
•
Simple and quick way to look at logs

View Slide

docker events example

View Slide

docker logs example

View Slide

kubectl logs example

View Slide

Container integrity checks example

View Slide

System level monitoring using cAdvisor

View Slide

•
•
•
•
What about security specific monitoring?

View Slide

•

•

•
•
•
•
Why Sysdig Falco?

View Slide

•
•
•
Why Sysdig Falco?

View Slide

DEMO - Introducing Sysdig Falco
https://youtu.be/A41bAUzvym0

View Slide

Automated defense for container security

View Slide

Automated defense infrastructure setup

View Slide

•
•
•
•
•
•
Automated defense infrastructure setup

View Slide

DEMO - Automated defense
https://youtu.be/zd0ksjZI5Vk

View Slide

•
•
•
•
•
What just happened?

View Slide

•
•
•
Use cases

View Slide

Want to try it yourself in a browser?
https://www.katacoda.com/sysdig/scenarios/sysdig-falco

View Slide

Credits and acknowledgements
●
●
●
●
●

View Slide

•
•
•
• https://www.katacoda.com
•
•

References and resources

View Slide

Thank You Sponsors

View Slide

Thank You Supporters

View Slide

Meet Me in the Slack Channel for Q&A

View Slide

Thank You
@madhuakula | @appseccouk

View Slide

Madhu Akula