Capsule8 Complete is designed for organizations that require the most complete Linux security solution in the market. It's suitable for users with incident response or threat-hunting teams who are experienced in building their own detections based on their own research and specialized threat models, or for users with highly complex Linux environments, including custom kernels, who need additional tailoring for their unique operational context.
Capsule8 Complete also adds:
- Investigations (needs additional configuration)
- Custom Policies
Upgrading to COMPLETE
Using the YAML config file
Set the 'level' configuration key in the top level of
level: 'COMPLETE' console: #...
Using environment variables
Use the environment variable
CAPSULE8_LEVEL=COMPLETE in the console deployment.
Next step: Restart the console.