docs: enhancing Falco main messaging

Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
falcosecurity · Oct 30, 2024 · 9d7c449 · 9d7c449
1 parent 811b208
commit 9d7c449
Show file tree

Hide file tree

Showing 3 changed files with 10 additions and 10 deletions.
diff --git a/content/en/docs/_index.md b/content/en/docs/_index.md
@@ -8,11 +8,11 @@ aliases:
 
 ## What is Falco?
 
-Falco is a cloud native runtime security tool for Linux operating systems. It is designed to detect and alert on abnormal behavior and potential security threats in real-time.
+Falco is a cloud native security tool that provides runtime security across hosts, containers, Kubernetes, and cloud environments. It is designed to detect and alert on abnormal behavior and potential security threats in real-time.
 
-At its core, Falco is a kernel monitoring and detection agent that observes events, such as syscalls, based on custom rules. Falco can enhance these events by integrating metadata from the container runtime and Kubernetes. The collected events can be analyzed off-host in SIEM or data lake systems.
+At its core, Falco is a monitoring and detection agent that observes events (such as [Linux kernel events](event-sources/kernel) and other data sources through [plugins](plugins)) and delivers real-time alerts based on custom rules. Falco also enhances these events by integrating contextual metadata from container runtimes and Kubernetes. The generated alert events can be forwarded to other components to take action or be analyzed in SIEM or data lake systems for further investigation.
 
-Falco, originally created by [Sysdig](https://sysdig.com), is now a [Cloud Native Computing Foundation](https://cncf.io) (CNCF) project used in production by various [organisations](https://github.com/falcosecurity/falco/blob/master/ADOPTERS.md).
+Falco, originally created by [Sysdig](https://sysdig.com), is now a graduate [Cloud Native Computing Foundation](https://cncf.io) (CNCF) project used in production by various [organisations](https://github.com/falcosecurity/falco/blob/master/ADOPTERS.md).
 
 
 ## What does Falco do?
@@ -70,9 +70,9 @@ Falco is composed of several main components:
 
  - Driver - is a software that adheres to the Falco driver specification and sends a stream of kernel events. Currently, Falco supports the following drivers:
 
-    - (Default) Kernel module
-    - Modern eBPF probe (CO-RE paradigm and more)
+    - (Default) Modern eBPF probe (CO-RE paradigm and more)
     - Legacy eBPF probe built
+    - Kernel module
 
     For more information, see [Falco Drivers](event-sources/drivers).
 

diff --git a/content/en/docs/getting-started/_index.md b/content/en/docs/getting-started/_index.md
@@ -5,7 +5,7 @@ hide_section_index: true
 weight: 10
 ---
 
-Falco is a cloud-native security tool. It provides near real-time threat detection for cloud, container, and Kubernetes workloads by leveraging runtime insights. Falco can monitor events defined via customizable {{< glossary_tooltip text="rules" term_id="rules" >}} from various sources, including the Linux kernel, and enrich them with metadata from the Kubernetes API server, container runtime, and more. Falco supports a wide range of kernel versions, x86_64 and ARM64 architectures, and many different output channels.
+Falco is a cloud native security tool. It provides near real-time threat detection for cloud, container, and Kubernetes workloads by leveraging runtime insights. Falco can monitor events defined via customizable {{< glossary_tooltip text="rules" term_id="rules" >}} from various sources, including the Linux kernel, and enrich them with metadata from the Kubernetes API server, container runtime, and more. Falco supports a wide range of kernel versions, x86_64 and ARM64 architectures, and many different output channels.
 
 ## Try it now
 

diff --git a/i18n/en/en.yaml b/i18n/en/en.yaml
@@ -25,17 +25,17 @@ version_banner_warning:
 latest_version:
   other: "latest version"
 cloud-native-runtime-security:
-  other: Cloud-Native Runtime Security
+  other: Cloud Native Runtime Security
 home_falco_description:
   other: |
-    <b>Falco</b>, the cloud-native runtime security project, is the de facto <b>Kubernetes threat detection engine</b><br /><br />
+    <b>Falco</b>, the cloud native runtime security project, is the de facto <b>Kubernetes threat detection engine</b><br /><br />
     <small>Falco is a CNCF graduated runtime security project, the first of its kind to join CNCF at incubation level.
         Falco acts as a security camera detecting unexpected behavior, intrusions, and data theft 
         in real time.</small>
 home_featured_videos:
   other: Featured Videos
 home_falco_intro_title:
-  other: <b>Falco</b>, the cloud-native runtime security project, is the de facto <b>Kubernetes threat detection engine</b>
+  other: <b>Falco</b>, the cloud native runtime security project, is the de facto <b>Kubernetes threat detection engine</b>
 home_falco_intro_main:
   other: Detects threats at runtime by observing the behavior of your applications and containers.
 home_falco_intro_plugins:
@@ -69,7 +69,7 @@ home_show_less:
 home_falco_what_is_falco_title:
   other: Detect security threats in real time
 home_falco_what_is_falco:
-  other: Falco is a cloud-native security tool designed for Linux systems. It employs custom rules on kernel events, which are enriched with container and Kubernetes metadata, to provide real-time alerts. Falco helps you gain visibility into abnormal behavior, potential security threats, and compliance violations, contributing to comprehensive runtime security.
+  other: Falco is a cloud native security tool that provides runtime security across hosts, containers, Kubernetes, and cloud environments. It leverages custom rules on Linux kernel events and other data sources through plugins, enriching event data with contextual metadata to deliver real-time alerts. Falco enables the detection of abnormal behavior, potential security threats, and compliance violations.
 home_stories_from_our_users:
   other: Stories From Our Users
 home_falco_cncf: