Security Profiles

Observe and record security events

Tetragon is able to observe various security events and even enforce security policies.

The Record Linux Capabilities Usage guide shows how to monitor and record Capabilities checks conducted by the kernel on behalf of applications during privileged operations. This can be used to inspect and produce security profiles for pods and containers.

Record Linux Capabilities Usage

Record a capability profile of pods and containers

Last modified December 1, 2023: docs: fix main section frontmatter and weight (e680ad34)