Nefarious Container

We recently evaluated Lacework as a Cloud Workload Protection Platform for Workiva. To test some of the CWPP capabilities of Lacework I created a nefarious-container that did some … errr … nefarious things that should be caught by a CWPP. The container code is up on Github. It pulls information from a known crypto mining site as well as modifies the /etc/resolv file to trigger the File Integrity Monitoring (FIM) feature of Lacework. [Read More]