diff --git a/radar/2019-11-01/falco.md b/radar/2019-11-01/falco.md
new file mode 100644
index 0000000..5bd55c7
--- /dev/null
+++ b/radar/2019-11-01/falco.md
@@ -0,0 +1,11 @@
+---
+title:      "Falco"
+ring:       assess
+quadrant:   tools
+
+---
+
+Falco is an open source project for intrusion and abnormality detection for Cloud Native platforms such as Kubernetes. 
+It detects abnormal application behavior and sends alerts via Slack, Fluentd, NATS, and more.
+
+We are assessing Falco to add another angle to host based intrusion detection and alerting.
\ No newline at end of file