Wo​rkshop

In​termediate

Unleashing the CNCF’s Project Falco to Combat Accelerated Cloud Threats

1:10 - 1:55 PM ET ; Novella Room​

Have you ever wanted to understand how modern attackers access and infect cloud accounts so quickly? This ​workshop is your chance. Attendees will gain hands-on experience running a refined and high-speed attack ​in the public cloud, and then use Falco and its open source ecosystem to detect and alert on it, gaining ​practical cybersecurity skills.


Sysdig, a steward of the open source CNCF project Falco, recently discovered a sophisticated and speedy ​cloud attack called SCARLETEEL. This attack starts from a compromised Kubernetes container and moves ​laterally using public cloud APIs and identities to infect the victim's cloud account, ultimately stealing ​proprietary application code and other data. Fortunately, we can use Falco to detect not only threats in ​containers, but also how public cloud APIs are being used against us. In the workshop we will replicate this ​attack, but we’ll have Falco to detect it!


One of the reasons for using the cloud is speed. It takes no time at all to spin up cloud resources. But that ​same speed can be used against us by malicious actors who can use the same APIs we use to automate and ​accelerate their attacks, and then move laterally through our cloud environments at lightning speed. Today, ​we have only minutes to identify and remediate cloud attacks. We no longer have the luxury of time. We ​need to move fast, and so do our tools, just like Falco does.


Fig. 1. diagram of SCARLETEEL

Curtis Collicutt

Curtis works on making complicated software safer and easier to use. He has worked in the areas of complex systems, developer experience, and cyber security. Curtis often approaches his work from a socio-technical aspect and thinks it's not what technology can do that matters, but how we use it. Currently, he helps companies succeed by ensuring that their software and systems are secure.

Marat Salakhutdinov

Marat has more than 15 years of tech and internet industry experience. Currently, he is a Senior Customer Solutions Engineer devoted to helping customers secure their cloud native platforms and applications. Before joining Sysdig, he was working as a DevOps consultant and delivering kubernetes and cloud solutions to various international companies.



Grab your ticket @ Ticket Tailor