tracee
tracee copied to clipboard
aquasecurity
Linux Runtime Security and Forensics using eBPF
I came upon an issue with the new way to compile tracee with docker: ``` make -f builder/Makefile.tracee-make alpine-prepare make -f builder/Makefile.tracee-make alpine-make ARG="clean all" ``` This results the following...
## Prerequisites - [x] Is this an EPIC issue describing other issues ? (add label: EPIC) ## Feature description - Load the Program - Block something - Alert through tracee-rules...
Currently, when tracee-ebpf receive the exit signal it finishes the `Tracee.Run()` function and return to `main`. In `main`, the `printer.Close()` method is called which disable future writing to the printer....
## Prerequisites - [x] This affects latest released version. - [x] This affects current development tree (origin/HEAD). - [x] There isn't an issue describing the bug. Select one OR another:...
## Prerequisites - [x] This affects latest released version. - [x] This affects current development tree (origin/HEAD). - [x] There isn't an issue describing the bug. Select one OR another:...
## Prerequisites - [ ] This issue is an EPIC issue (add label: EPIC). - [ ] This issue is an EPIC TASK (add issue to EPIC description). Select one...
## Prerequisites - [ ] This issue is an EPIC issue (add label: EPIC). - [x] This issue is an EPIC TASK (add issue to EPIC description). Select one OR...
## Prerequisites - [x] This issue is an EPIC issue (add label: EPIC). Select one OR another: - [x] I'll create a PR to implement this feature (assign to yourself)....
## Prerequisites - [ ] This issue is an EPIC issue (add label: EPIC). - [ ] This issue is an EPIC TASK (add issue to EPIC description). Select one...
The mapping between tracee Finding and falcosidekick Payload doesn't properly map the severity and key metadata items. when displayed in falcosidecick-ui the filters doesn't work cc: @idanr1986
Metadata
Owner
Metadata
Linux Runtime Security and Forensics using eBPF