Melissa Kilby
Melissa Kilby
Signed-off-by: Melissa Kilby **What type of PR is this?** /kind feature /kind rule-create **Any specific area of the project related to this PR?** /area rules **What this PR does /...
Kicking off a discussion as result of https://github.com/falcosecurity/libs/pull/524 CI Integration / "Fun" for tool developer -> sanity for everyone :) Success Criteria: - Daily confirmation that driver state did not...
Signed-off-by: Melissa Kilby **What type of PR is this?** > Uncomment one (or more) `/kind ` lines: > /kind bug > /kind cleanup > /kind design /kind documentation > /kind...
**Describe the bug** It seems like when the `socket` system call is enabled in the eBPF kernel driver, sometimes during an unlucky Falco run sockets are not closing in the...
Co-authored-by: Leonardo Grasso Signed-off-by: Melissa Kilby **What type of PR is this?** > Uncomment one (or more) `/kind ` lines: > /kind bug > /kind cleanup > /kind design /kind...
Signed-off-by: Melissa Kilby **What type of PR is this?** > Uncomment one (or more) `/kind ` lines: > /kind bug /kind cleanup > /kind design /kind documentation > /kind failing-test...
Based on the discussion in https://github.com/falcosecurity/libs/pull/580 additional documentation in this repo (falco) can help increase technical clarity around versioning. - https://github.com/falcosecurity/libs/pull/580#discussion_r964497282 - https://github.com/falcosecurity/libs/pull/580#discussion_r964522134 CC @leogr
**What type of PR is this?** > Uncomment one (or more) `/kind ` lines: > /kind bug /kind cleanup > /kind design > /kind documentation > /kind failing-test /kind feature...
**Motivation** Quote from https://github.com/falcosecurity/libs/pull/595 > Another kernel side signal that would like to look into and possibly add to this PR would be: > > `"Interpreter scripts"` aka text files...
This issue is for tracking the development of a more generic and robust solution to detect the classic drop an implant and execute it TTP called "drop+exec". In addition, perform...