Hacker News
- Secure SSH on EC2: What are the real threats? https://sysdig.com/blog/aws-secure-ssh-ec2-threats/ 3 comments
- SELinux, Seccomp, Falco, and You: A Technical Discussion https://sysdig.com/blog/selinux-seccomp-falco-technical-discussion/ 24 comments
- Sysdig vs. DTrace vs. Strace (2014) https://sysdig.com/blog/sysdig-vs-dtrace-vs-strace-a-technical-discussion/ 3 comments
- 50 Shades of System Calls https://sysdig.com/50-shades-of-system-calls/ 15 comments
- Sysdig Raises $13M and Launches Container-Native Monitoring https://sysdig.com/monitoring-as-a-microservice 2 comments
- Kubernetes 1.26 – What’s new? Deprecations + New Features https://sysdig.com/blog/kubernetes-1-26-whats-new/ 3 comments kubernetes
- Building Kubernetes honeypots with vcluster and Falco https://sysdig.com/blog/how-to-honeypot-vcluster-falco/ 3 comments kubernetes
- AWS Security Groups Guide https://sysdig.com/blog/aws-security-groups-guide/ 3 comments aws
- Image Scanning admission controllers https://sysdig.com/blog/image-scanning-admission-controller/ 11 comments kubernetes
- Compromising Read-Only Containers with Fileless Malware https://sysdig.com/blog/containers-read-only-fileless-malware/ 3 comments netsec
- Are vulnerability scores misleading you? Understanding CVSS severity and using them effectively https://sysdig.com/blog/vulnerability-score-cvss-meaning/ 9 comments netsec
- Triaging A Malicious Docker Container https://sysdig.com/blog/triaging-malicious-docker-container/ 2 comments netsec
- Triaging A Malicious Docker Container https://sysdig.com/blog/triaging-malicious-docker-container/ 3 comments docker
- Exploiting and Mitigating CVE-2021-44228: Log4j Remote Code Execution (RCE) https://sysdig.com/blog/exploit-detect-mitigate-log4j-cve/ 16 comments netsec
- Kubernetes 1.23 will be out next week – Learn what’s new and what's deprecated - Graduating to Stable: CronJobs, IPv4/IPv6 dual-stack support, Ephemeral volumes, and the HPA API… https://sysdig.com/blog/kubernetes-1-23-whats-new/ 17 comments kubernetes
- Cryptominer attacks are on the rise. Muhstik Botnet attacking a Kubernetes Pod https://sysdig.com/blog/muhstik-malware-botnet-analysis/ 21 comments netsec
- Comprehensive guide for container security best practices: Prevention, Protection, Detection & Response. https://sysdig.com/blog/container-security-best-practices/ 6 comments docker
- Why not changing the default credentials is a bad idea? Crypto mining attack analysis: The Sysrv-Hello Botnet targeting a WordPress installation for crypto mining. https://sysdig.com/blog/crypto-sysrv-hello-wordpress/ 12 comments wordpress
- Kubernetes 1.22 will be out next week - What's new and deprecated? - PSP replacement - Rootless mode - Seccomp by default - Cgroupsv2 https://sysdig.com/blog/kubernetes-1-22-whats-new/ 3 comments kubernetes
- Detecting the new crypto mining attack targeting Kubeflow and TensorFlow - How the attack works + Steps to mitigate + Detect using Falco rules or Prometheus metrics https://sysdig.com/blog/crypto-mining-kubeflow-tensorflow-falco/ 6 comments kubernetes
- Rightsize the Kubernetes resource limits + 🕵️♂️ Detect containers running without limits + 🧘🏽♀️ Assure that your cluster has enough capacity https://sysdig.com/blog/kubernetes-resource-limits/ 6 comments kubernetes
- Hiding malicious processes in containers exploiting ld.so.preload - How does it works - How to prevent - How to detect with Falco https://sysdig.com/blog/unveil-processes-falco-cloud/ 2 comments netsec
- How to detect sudo’s CVE-2021-3156 using Falco https://sysdig.com/blog/cve-2021-3156-sudo-falco/ 7 comments netsec
- THREAT ALERT: Crypto miner attack from RinBot's server, a Discord bot. Chronicle of the investigation + how to mitigate the attack. https://sysdig.com/blog/rinbot-discord-bot-crypto-miner/ 16 comments netsec
- AuditD vs. Falco as Host Intrusion Detection tools - Rule creation, granularity, capabilities, performance… https://sysdig.com/blog/falco-vs-auditd-hids/ 4 comments netsec
- Protect your Docker containers from Kinsing - Kdevtmpfsi crypto mining malware https://sysdig.com/blog/zoom-into-kinsing-kdevtmpfsi/ 12 comments docker
- Kubernetes 1.19 will be out next week! Here are the new features and improvements. https://sysdig.com/blog/whats-new-kubernetes-1-19/ 20 comments kubernetes
- Kubernetes 1.18 will be out next week! Here are all the new features and improvements. https://sysdig.com/blog/whats-new-kubernetes-1-18/ 4 comments kubernetes
- Detecting exploits of CVE-2019-5736: runc container breakout https://sysdig.com/blog/cve-2019-5736-runc-container-breakout/ 14 comments docker
- Sysdig Inspect – a powerful interface for linux troubleshooting and security investigation https://sysdig.com/blog/sysdig-inspect/ 4 comments linux
- Friends don't let friends Curl | Bash https://sysdig.com/blog/friends-dont-let-friends-curl-bash/ 3 comments netsec
- How we found a bug in Amazon ELB https://sysdig.com/blog/amazon-elb-bug/ 4 comments aws
- Linux Troubleshooting Cheatsheet: strace, htop, lsof, tcpdump, iftop & sysdig https://sysdig.com/blog/linux-troubleshooting-cheatsheet/ 6 comments programming
- Linux Troubleshooting Cheatsheet: strace, htop, lsof, tcpdump, iftop & sysdig https://sysdig.com/blog/linux-troubleshooting-cheatsheet/ 7 comments sysadmin
- Fishing for Hackers Part 2: Quickly Identify Suspicious Activity https://sysdig.com/blog/fishing-for-hackers-part-2/ 7 comments netsec
- Fishing for Hackers: Analysis of a Linux Server Attack (tl;dr, rooted Perl ddos irc bot) https://sysdig.com/blog/fishing-for-hackers/ 18 comments linux
- Fishing for Hackers: Analysis of a Linux Server Attack (tl;dr, rooted Perl ddos irc bot) https://sysdig.com/blog/fishing-for-hackers/ 5 comments sysadmin
- Fishing for Hackers: Analysis of a Linux Server Attack https://sysdig.com/blog/fishing-for-hackers/ 18 comments netsec
- 50 Shades of System Calls https://sysdig.com/50-shades-of-system-calls/ 23 comments sysadmin
- Announcing csysdig -- think strace + htop + Lua + container support https://sysdig.com/announcing-csysdig-strace-htop-lua-container-support 5 comments sysadmin
Linking pages
- GitHub - remoteintech/remote-jobs: A list of semi to fully remote-friendly companies (jobs) in tech. https://github.com/remoteintech/remote-jobs 158 comments
- GitHub - analysis-tools-dev/static-analysis: ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality. https://github.com/analysis-tools-dev/static-analysis 112 comments
- Wireshark Is 25: The email that started it all and the lessons learned along the way | Sniff free or die https://blog.wireshark.org/2023/07/wireshark-is-25/ 77 comments
- Commons Clause stops open-source abuse | TechCrunch https://techcrunch.com/2018/09/07/commons-clause-stops-open-source-abuse/ 40 comments
- 50 shades of system calls – Sysdig https://sysdig.com/50-shades-of-system-calls/ 38 comments
- GitHub - eliasgranderubio/dagda: a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities https://github.com/eliasgranderubio/dagda 26 comments
- 100 Top Observability Tools (+ Server Monitoring and APM solutions) https://haydenjames.io/20-top-server-monitoring-application-performance-monitoring-apm-solutions/ 21 comments
- GitHub - analysis-tools-dev/static-analysis: ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality. https://github.com/mre/awesome-static-analysis#c 21 comments
- Visualizing AWS Storage with Real-Time Latency Spectrogram http://sysdigcloud.com/aws-storage-latency-sysdig-spectrogram/ 16 comments
- My Love Hate Relationship with Docker and Container Orchestration Systems https://penguindreams.org/blog/my-love-hate-relationship-with-docker-and-container-orchestration-systems/ 12 comments
- The crusade against open-source abuse • TechCrunch https://techcrunch.com/2018/11/29/the-crusade-against-open-source-abuse/ 9 comments
- GitHub - CrowdDotDev/awesome-oss-investors: Awesome list of VCs investing in commercial open-source startups 💸 https://github.com/CrowdDotDev/awesome-oss-investors 8 comments
- Report: 75% of containers found to be operating with severe vulnerabilities | VentureBeat https://venturebeat.com/2022/01/28/report-75-of-containers-found-to-be-operating-with-severe-vulnerabilities/ 7 comments
- Cloud Native Computing Foundation Announces Schedule for KubeCon + CloudNativeCon San Diego | Cloud Native Computing Foundation https://www.cncf.io/announcement/2019/09/05/cloud-native-computing-foundation-announces-schedule-for-kubecon-cloudnativecon-san-diego/ 6 comments
- Falco Update: What's new in Falco? | Cloud Native Computing Foundation https://www.cncf.io/blog/2020/08/17/falco-update-whats-new-in-falco-0-25/ 4 comments
- 100 Top Venture Capitalists in the USA https://valuer.ai/blog/100-top-venture-capitalists-in-the-usa/ 4 comments
- OpenShift and Network Security Zones: Coexistence Approaches https://blog.openshift.com/openshift-and-network-security-zones-coexistence-approaches/ 3 comments
- Unveil hidden malicious processes with Falco in cloud-native environments | Sysdig https://sysdig.com/blog/unveil-processes-falco-cloud/ 2 comments
- Remote-friendly companies – Remote In Tech https://remoteintech.company 1 comment
- The Schedule for KubeCon + CloudNativeCon North America 2022 is Live | Cloud Native Computing Foundation https://www.cncf.io/announcements/2022/08/03/the-schedule-for-kubecon-cloudnativecon-north-america-2022-is-live/ 1 comment