Community Brand & Identity Guidelines

Looking for our logo? Want to reference The Falco Project correctly? Below you will find information on logos and typography, as well as some facts on the Falco project you can use in your public facing content.

Falco is an open source security project whose brand and identity are governed by the Cloud Native Computing Foundation.

Visual content

Project Mark

Wherever possible, the horizontal teal logo is the preferred logo. If you need all the logos, download the logo pack.

Horizontal color
Horizontal color
Horizontal black
Horizontal black
Horizontal white
Horizontal white
Icon color
Icon color
Icon black
Icon black
Icon white
Icon white
Stacked color
Stacked color
Stacked black
Stacked black
Stacked white
Stacked white

Project Font & Typestyle

Falco prefers Ubuntu font. When you reference us, please capitalize the first letter of our name, just as you would your own.

Falco, The Falco Project
check
falco, the falco project, the Falco project
x

Project Colors

Teal
RGB 0 174 199
PMS 3125
Cool grey
RGB 83 86 90
PMS 11
Black
RGB 0 0 0
White
RGB 255 255 255

Project Slide Templates

Want to speak about Falco at a meetup or conference? Make it easier by using these templates and/or scripted slides. You can even watch this video as a training tool.

Falco diagrams

Find all the SVG and PNG format diagrams used throughout the Falco website on this repository.

Written content

Project Facts

As of April, 2024, Falco has:
60M+ Download on Dockerhub
40+ Integrations
5,800+ GitHub stars
170 contributors

Project Origin

Falco was created as a cloud native runtime security project by Sysdig. The project was contributed to the CNCF in October 2018. Falco is a CNCF graduated project with more than 170 individual contributors around the world.

Project Description

Cloud Native Runtime Security

Project Blurbs

25-word description

Falco is a cloud-native runtime security tool to detect threats and provide alerts in real-time. It employs custom rules on kernel events, which are enriched with container and Kubernetes metadata.

50-word description

Falco is a cloud-native runtime security tool that lets you detect threats and provide alerts in real-time. It uses custom rules on kernel events, which are enriched with container and Kubernetes metadata. Visibility is a significant challenge: with Falco, you can see abnormal behavior, potential security threats, and compliance violations, contributing to comprehensive runtime security.

100-word description

Falco is a cloud-native runtime security tool to detect threats and provide alerts in real-time. Acting like a security camera, Falco can monitor the cloud-native environment, employing custom rules on kernel events, which are enriched with container and Kubernetes metadata. This allows users to see abnormal behavior, potential security threats, and compliance violations, contributing to comprehensive runtime security. Falco uses state-of-the-art eBPF technology to deliver deep visibility, but is also lightweight, efficient, and scalable, making it ideal to use in both development and production. Falco is supported by a global multi-vendor ecosystem, and is hosted by the CNCF, home of the Kubernetes project.

Project Encouraged Phrasing

The phrases below are effective ways of messaging Falco's value add. Use them when writing or speaking publicly about Falco. You can also reference language in the About Falco section.

Falco is a popular open source tool for runtime threat detection

This statement refers to Falco as a CNCF graduated project with widespread adoption and broad community leadership.

Falco is a rules engine that powers runtime security

This term refers to the concept that Falco is a stateless processing engine. A large amount of data comes into the engine, but meticulously crafted security alerts come out. It reasons about signals coming from a system at runtime, and can alert if a threat is detected.

Falco provides real time threat detection

Falco provides streaming detection of unexpected behavior, configuration changes, and attacks. With this streaming approach, Falco enables real-time response while minimizing storage costs and complexity.

Falco delivers detection tooling and alerts

Falco does not prevent unwanted behavior, rather it alerts when unusual behavior, config changes, intrusions and data theft occurs. This is commonly referred to as detection or forensics.