Container Threat Detection and Response for AWS Fargate with Sysdig
AWS Partner Network Blog
This article discusses how to achieve real-time visibility and threat detection for AWS Fargate workloads using Sysdig Secure, a cloud-native application protection platform.
Specifically, the article covers:
- Why serverless containers need additional security beyond what AWS provides
- How Sysdig's Falco open-source tool uses syscall instrumentation to detect threats for AWS Fargate containers
- The additional capabilities Sysdig Secure provides beyond Falco, including SaaS-based security, out-of-the-box policies, automatic remediation, forensics, and visualizations
- Details on how Sysdig Secure instruments AWS Fargate with a serverless workload agent and orchestrator agent
- An example use case of detecting and responding to the Log4Shell vulnerability using Sysdig Secure
- Conclusion highlighting the importance of quickly identifying and responding to container threats
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Dec 28
2023
2023
Using Amazon GuardDuty ECS runtime monitoring with Fargate and Amazon EC2
Jan 23
2024
2024
Enhanced Threat Detection with AWS Security Hub and Red Hat Advanced Cluster Security for Kubernetes
May 13
2024
2024
Windows Containers on AWS Fargate: Launch time improvements
Dec 10
2025
2025
Amazon ECS now supports custom container stop signals on AWS Fargate
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.