Threat Stack Container Security Monitoring for AWS Fargate

Threat Stack Container Security Monitoring for AWS Fargate expands your view across the full cloud security stack. Threat Stack Container Security Monitoring for AWS Fargate runs as a sidecar and is defined as part of your Fargate task definition on Amazon ECS. The Agent monitors two key aspects of your Fargate runtime environment:

  • Process activity inside Fargate containers
  • Network flow data within, and external to, Fargate tasks

Data Monitored and Alerted On

Threat StackⓇ provides default detections for the following Fargate activities:

  • Interactive sessions
  • SSHD binaries
  • Data exfiltration attempts
  • Unexpected network connections

These detection rules fire real-time alerts.

Related Articles

Was this article helpful?
0 out of 0 found this helpful