resources
 > Content library

Browse all content by asset type.

filter by:
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
No items found.

Blog Posts

Sysdig TRT uncovers massive cryptomining operation leveraging GitHub Actions
Sysdig TRT uncovers massive cryptomining operation leveraging GitHub Actions
Kubernetes & Container Security
Threat Research

Sysdig TRT uncovers massive cryptomining operation leveraging GitHub Actions

Crystal Morin
|
October 25, 2022
Detecting and mitigating CVE-2022-42889 a.k.a. Text4shell
Detecting and mitigating CVE-2022-42889  a.k.a. Text4shell
Threat Research

Detecting and mitigating CVE-2022-42889 a.k.a. Text4shell

Alessandro Brucato
|
October 20, 2022
Cost Advisor: Optimize and Rightsize your Kubernetes Costs
Cost Advisor: Optimize and Rightsize your Kubernetes Costs
Monitoring
Sysdig Features

Cost Advisor: Optimize and Rightsize your Kubernetes Costs

Victor Hernando
|
October 19, 2022

Briefs

Sysdig Corporate Brief
Sysdig Corporate Brief

Sysdig Corporate Brief

Founded by the creators of open source standards — Falco, Stratoshark, and Wireshark — and built on agentic AI, Sysdig delivers real-time cloud defense grounded in the uncompromising truth of runtime.

BRIEF. 2025 Cloud‐Native Security and Usage Report
BRIEF. 2025 Cloud‐Native Security and Usage Report

BRIEF. 2025 Cloud‐Native Security and Usage Report

This is a special edition of Sysdig’s 2025 Cloud-Native Security and Usage Report, providing only the usage and analysis of the open source detection tool, Falco.

BRIEF. Top 5 Best Practices For Image Scanning
BRIEF. Top 5 Best Practices For Image Scanning

BRIEF. Top 5 Best Practices For Image Scanning

How do you manage container security risk without slowing down application delivery?

Case Studies

Greater Stability, Smarter Planning: How a Global Enterprise Gained Control of Its Cloud

Greater Stability, Smarter Planning: How a Global Enterprise Gained Control of Its Cloud

Global Technology Leader unifies cloud monitoring to eliminate blind spots and outages

Caught in Runtime: How Sysdig Detected Credential Exposure in a Crypto Platform Before It Became a Breach

Caught in Runtime: How Sysdig Detected Credential Exposure in a Crypto Platform Before It Became a Breach

Cryptotrading Platform prevents breach with real-time visibility

Good-Enough Security Isn’t Good Enough When You Serve a Billion People

Good-Enough Security Isn’t Good Enough When You Serve a Billion People

UIDAI secures 1.4B+ identities and 100M daily authentications with Sysdig.

Ebooks

Top 6 Use Cases for Monitoring Cloud-Native Workloads with Sysdig Monitor
Top 6 Use Cases for Monitoring Cloud-Native Workloads with Sysdig Monitor

Top 6 Use Cases for Monitoring Cloud-Native Workloads with Sysdig Monitor

Securing the Cloud: The Benefits of Falco with an Enterprise Experience
Securing the Cloud: The Benefits of Falco with an Enterprise Experience

Securing the Cloud: The Benefits of Falco with an Enterprise Experience

An ebook with 3 mini case studies heavily featuring Falco and how it works with Sysdig, plus a callout to Falco Feeds at the end.

The Value of Sysdig's CNAPP
The Value of Sysdig's CNAPP

The Value of Sysdig's CNAPP

Guides

Cloud Security for Google Cloud
Cloud Security for Google Cloud

Cloud Security for Google Cloud

This guide outlines key requirements and capabilities for establishing comprehensive security for Google Cloud services and containers.

Cloud Security for Amazon Web Services
Cloud Security for Amazon Web Services

Cloud Security for Amazon Web Services

This guide outlines key requirements and capabilities for establishing comprehensive security for AWS cloud services and containers.

Secure Your Cloud in Minutes - Your Checklist for Meeting the 555 Benchmark
Secure Your Cloud in Minutes - Your Checklist for Meeting the 555 Benchmark

Secure Your Cloud in Minutes - Your Checklist for Meeting the 555 Benchmark

Sysdig’s 555 Benchmark for Cloud Detection and Response offers a standard to use when measuring how fast your security teams can counter attackers. Specifically, the benchmark finds that to outpace attacks, your security teams need to detect threats within 5 seconds, correlate and triage data within the first 5 minutes, and initiate a tactical response within the next 5 minutes.Sysdig’s 555 Benchmark for Cloud Detection and Response offers a standard to use when measuring how fast your security teams can counter attackers. Specifically, the benchmark finds that to outpace attacks, your security teams need to detect threats within 5 seconds, correlate and triage data within the first 5 minutes, and initiate a tactical response within the next 5 minutes.

Infographics

7 Cloud Security Requirements for Financial Service Providers
7 Cloud Security Requirements for Financial Service Providers

7 Cloud Security Requirements for Financial Service Providers

Learn the seven requirements financial services (finserv) firms and banks should meet to stay compliant and stop breaches.

Top 10 Metrics In PostgreSQL monitoring with Prometheus
Top 10 Metrics In PostgreSQL monitoring with Prometheus

Top 10 Metrics In PostgreSQL monitoring with Prometheus

Learn the top 10 metrics in PostgreSQL monitoring, with alert examples, both for PostgreSQL instances in Kubernetes and AWS RDS!

PromQL Cheatsheet
PromQL Cheatsheet

PromQL Cheatsheet

Prometheus is a monitoring and alerting system with a text based metric format, a multidimensional data model and a powerful query language. It’s now widely used and is the de facto standard for monitoring kubernetes. Metrics can be pulled from different sources, known as 'targets'. Download the PromQL Cheatsheet to see examples of popular functions and selectors.

Podcasts

Exploring Advanced Cybersecurity with Michael Isbitski

Exploring Advanced Cybersecurity with Michael Isbitski

"Cybersecurity leader Mike Isbitski explores the intricacies of cloud-native security and vulnerability management in today's technological landscape. With over 25 years of experience, he provides valuable insights into the challenges and complexities organizations face in securing ephemeral infrastructure and machine identities in the cloud. This episode also explores the cautious adoption of AI in cybersecurity, emphasizing the need for a balanced approach that maintains operational functionality while addressing evolving security concerns."

Screaming in the Cloud: Benchmarking Security Attack Response Times in the Age of Automation with Anna Belak

Screaming in the Cloud: Benchmarking Security Attack Response Times in the Age of Automation with Anna Belak

"Anna Belak, Director of the Office of Cybersecurity Strategy at Sysdig, joins Corey on Screaming in the Cloud to discuss the newest benchmark for responding to security threats, 5/5/5. Anna describes why it was necessary to set a new benchmark for responding to security threats in a timely manner, and how the Sysdig team did research to determine the best practices for detecting, correlating, and responding to potential attacks. Corey and Anna discuss the importance of focusing on improving your own benchmarks towards a goal, as well as how prevention and threat detection are both essential parts of a solid security program."

Screaming in the Cloud: An Open-Source Mindset in Cloud Security with Alex Lawrence

Screaming in the Cloud: An Open-Source Mindset in Cloud Security with Alex Lawrence

"Alex Lawrence, Field CISO at Sysdig, joins Corey Quinn on Screaming in the Cloud to discuss how he went from studying bioluminescence and mycology to working in tech, and his stance on why open source is the future of cloud security."

Press Releases

Sysdig Expands the Power of Runtime Context with New MCP Server and Partner Integration Hub
Sysdig Expands the Power of Runtime Context with New MCP Server and Partner Integration Hub

Sysdig Expands the Power of Runtime Context with New MCP Server and Partner Integration Hub

Sysdig, the leader in real-time cloud security, today announced the launch of its Model Context Protocol (MCP) server and partner integration hub, giving customers access to AI-powered security insights across their entire ecosystem.

October 15, 2025
Sysdig Unveils the Industry’s First Agentic Cloud Security Platform
Sysdig Unveils the Industry’s First Agentic Cloud Security Platform

Sysdig Unveils the Industry’s First Agentic Cloud Security Platform

With semantic analysis powered by autonomous AI agents, Sysdig Sage™ surfaces critical business risks and helps organizations fix them at the source in minutes

August 5, 2025
Sysdig Launches Open Source Community to Unite and Empower Millions of Cloud Security Innovators and Builders of All Levels
Sysdig Launches Open Source Community to Unite and Empower Millions of Cloud Security Innovators and Builders of All Levels

Sysdig Launches Open Source Community to Unite and Empower Millions of Cloud Security Innovators and Builders of All Levels

The company’s new forum establishes a place where Falco, Wireshark, Stratoshark, and sysdig OSS users can connect, collaborate, and growSAN…

July 9, 2025

Reports

Latio Tech 2025 Cloud Security Market Report
Latio Tech 2025 Cloud Security Market Report

Latio Tech 2025 Cloud Security Market Report

The 2025 Latio Cloud Security Market Report examines the technologies and strategies shaping the next generation of cloud and AI defense. As organizations adopt AI workloads and distributed architectures, the traditional boundaries of security continue to dissolve. Latio’s analysis highlights how the market is shifting from visibility to real-time, runtime protection—and why this evolution is critical to managing machine-speed risk. Within the report, Latio names Sysdig a leader for its ability to deliver the depth of telemetry, customization, and AI-driven correlation security teams need to operationalize cloud incident-response programs. By combining open innovation with deep runtime visibility, Sysdig helps organizations detect, prioritize, and respond to threats faster—across hybrid and AI-powered environments. This report serves as the most comprehensive guide for security leaders looking to understand where the market is headed, what capabilities define the leaders, and how to prepare their organizations for the future of cloud and AI security.

2025 Cloud Defense Report
2025 Cloud Defense Report

2025 Cloud Defense Report

Cloud attacks are accelerating, vulnerabilities are multiplying, and AI is reshaping both the attack surface and expectations for defense. In 2025, security leaders face a defining paradox: embracing AI to innovate and protect, while defending against the very AI-powered threats that evolve in seconds. The future of security lies in real-time, context-aware defense—rooted in visibility, collaboration, and AI that empowers defenders to move as fast as attackers.

Sysdig 2024 Cloud-Native Security and Usage Report
Sysdig 2024 Cloud-Native Security and Usage Report

Sysdig 2024 Cloud-Native Security and Usage Report

Videos

Detecting Threats to Kubernetes, Containers, and Google Cloud

Detecting Threats to Kubernetes, Containers, and Google Cloud

See how Sysdig helps secure and accelerate innovation with Google Cloud.

Secure DevOps Practices at Yahoo Japan

Secure DevOps Practices at Yahoo Japan

With more than 3,000 developers and a large Kubernetes environment, learn how Yahoo Japan is preventing cyber-attacks and unauthorized access by introducing appropriate security measures for the container environment.

Securing and Monitoring AWS Container Services

Securing and Monitoring AWS Container Services

Developers, operations, and security teams must work together to address key workflows to secure and monitor containers, Kubernetes and cloud services across...

Webinars

When Seconds Matter: Real-Time Cloud Security With AWS and Sysdig
When Seconds Matter: Real-Time Cloud Security With AWS and Sysdig

When Seconds Matter: Real-Time Cloud Security With AWS and Sysdig

Join experts from Amazon Web Services (AWS) and Sysdig to discuss the unique security challenges in the cloud and how to address them. We will highlight the new wave of cloud security – one that both consolidates what’s needed to protect your cloud and takes a fresh approach to addressing real risk.

On Demand
SANS CyberFest
SANS CyberFest

SANS CyberFest

Join us at CyberFest for a major announcement about cloud security benchmarks. Join us for our keynote, Cloud Security Accelerated: Does Your Threat Detection Measure Up?

Oct 25 - Oct 27
Strengthening Cyberattack Preparedness Through Identity Threat Detection and Response (ITDR)
Strengthening Cyberattack Preparedness Through Identity Threat Detection and Response (ITDR)

Strengthening Cyberattack Preparedness Through Identity Threat Detection and Response (ITDR)

This webinar delves into how the adaptable plugin architecture of the open-source Falco empowers security responders to expand their system call event detection capabilities to encompass auditing events originating from identity systems like Okta.

Oct 24, 2023 10AM PDT | 1PM EDT

Events

Cloud Native Bergen
Cloud Native Bergen

Cloud Native Bergen

Bergen
Oct 27
Oct 28
KubeCon NA
KubeCon NA

KubeCon NA

Nov 10
Nov 13
ITCM Marbella
ITCM Marbella

ITCM Marbella

Marbella
Nov 18
Nov 20

Whitepapers

Securing AI: Navigating a New Frontier of Security Risk

Securing AI: Navigating a New Frontier of Security Risk

Organizations worldwide are turning to artificial intelligence (AI) to gain insights, optimize operations, and remain competitive in an increasingly digitized economy. As businesses move workloads to cloud‑native environments to support these AI initiatives, they encounter a new frontier of security risk. For security managers building cloud security programs, it’s crucial to take a step back and ask: Does your current program truly cover the unique risks AI workloads bring?

NIS2 Action Plan for the Cloud CISO

NIS2 Action Plan for the Cloud CISO

The 555 Guide for Cloud Security Practitioners

The 555 Guide for Cloud Security Practitioners

The Sysdig 555 Benchmark for Cloud Detection and Response sets the standard for operating securely in the cloud, emphasizing the need for security teams to detect, triage, and respond to attacks within the average time it takes threat actors to conduct them: 10minutes.

Like what you see?