Threat Stack Container Security Monitoring for AWS Fargate
Threat Stack Container Security Monitoring for AWS Fargate expands your view across the full cloud security stack. Threat Stack Container Security Monitoring for AWS Fargate runs as a sidecar and is defined as part of your Fargate task definition on Amazon ECS. The Agent monitors two key aspects of your Fargate runtime environment:
- Process activity inside Fargate containers
- Network flow data within, and external to, Fargate tasks
Data Monitored and Alerted On
Threat StackⓇ provides default detections for the following Fargate activities:
- Interactive sessions
- SSHD binaries
- Data exfiltration attempts
- Unexpected network connections
These detection rules fire real-time alerts.