Introduction to Falco | Rawkode Academy

Watch / Rawkode Live / Introduction to Falco 1:20:50

§ Overview

About this video

Lorenzo Fontana and Leo Di Donato from Sysdig walk through Falco end-to-end: installing it on a host, the kernel module vs eBPF driver, writing rules in YAML, triggering syscall and Kubernetes audit alerts, and routing output via Falcosidekick.

§ Technologies featured

Meet the Cast

David Flanagan

David Flanagan

@rawkode

Leo Di Donato

Leo Di Donato

@leodido

Lorenzo Fontana

Lorenzo Fontana

@fntlnz

Weekly Cloud Native insights

Stay ahead in cloud native

Tutorials, deep dives, and curated events. No fluff.

Code

More from Rawkode Live

View all 170 episodes

Hands-on Introduction to sympozium

Hands-on Introduction to sympozium

Friday, January 23rd, 2026 - Chevron7

Friday, January 23rd, 2026 - Chevron7

Hands-on Introduction to jujutsu (jj)

Hands-on Introduction to jujutsu (jj)

Hands-on with Headlamp: The Kubernetes UI

Hands-on with Headlamp: The Kubernetes UI

Introducing Wassette: Securing MCP with WebAssembly

Introducing Wassette: Securing MCP with WebAssembly

MCP Servers for Rust Developers

MCP Servers for Rust Developers

More about Falco

View technology

Hands-on with Policy Reporter

Hands-on with Policy Reporter

More about Kubernetes

View all 171 videos

Navigating Kairos: Immutable Operating Systems with a Cloud Native Twist

Navigating Kairos: Immutable Operating Systems with a Cloud Native Twist

Kubernetes Security Scanning: The 4 Tools You Actually Need

Kubernetes Security Scanning: The 4 Tools You Actually Need

Kubernetes Disaster Recovery

Kubernetes Disaster Recovery

More about eBPF

View all 9 videos

The Magic of eBPF

The Magic of eBPF

Ambient Mesh with Marino Wijay & Matt Turner

Ambient Mesh with Marino Wijay & Matt Turner

Introduction & Overview of Parca for Continuous Profiling

Introduction & Overview of Parca for Continuous Profiling