Hey, guys.
I need to create a way to record all commands executed via exec, that is, all commands that are executed within a Pod.
Does anyone know of any tools, especially open source, that do this?
There are a number, many of which are described in the CKS course. falco is rule-based system that watches the processes the containers run. Kubernetes’ auditing system also lets you watch what passes through the API server. It depends on what you’re trying to prevent.
Hi rob_kodekloud
Thanks for your response. I’m going to study the falcon.
As soon as possible, I will study CKS for more information.
If you have other tools that you find useful, please let me know. any help is welcome.
thanks