diff --git a/scripts/debian/falco.service b/scripts/debian/falco.service
index 0163e02b..871a8dee 100644
--- a/scripts/debian/falco.service
+++ b/scripts/debian/falco.service
@@ -4,7 +4,9 @@ Description=Falco: Container Native Runtime Security
 [Service]
 Type=simple
 User=root
+ExecStartPre=/sbin/modprobe falco
 ExecStart=/usr/bin/falco --pidfile=/var/run/falco.pid
+ExecStopPost=/sbin/rmmod falco
 UMask=0077
 TimeoutSec=30
 RestartSec=15s
@@ -16,7 +18,6 @@ ProtectSystem=full
 ProtectKernelTunables=true
 RestrictRealtime=true
 RestrictAddressFamilies=~AF_PACKET
-SystemCallFilter=~@debug @mount @cpu-emulation @obsolete @privileged
 
 [Install]
 WantedBy=multi-user.target
diff --git a/scripts/rpm/falco.service b/scripts/rpm/falco.service
index 0163e02b..871a8dee 100644
--- a/scripts/rpm/falco.service
+++ b/scripts/rpm/falco.service
@@ -4,7 +4,9 @@ Description=Falco: Container Native Runtime Security
 [Service]
 Type=simple
 User=root
+ExecStartPre=/sbin/modprobe falco
 ExecStart=/usr/bin/falco --pidfile=/var/run/falco.pid
+ExecStopPost=/sbin/rmmod falco
 UMask=0077
 TimeoutSec=30
 RestartSec=15s
@@ -16,7 +18,6 @@ ProtectSystem=full
 ProtectKernelTunables=true
 RestrictRealtime=true
 RestrictAddressFamilies=~AF_PACKET
-SystemCallFilter=~@debug @mount @cpu-emulation @obsolete @privileged
 
 [Install]
 WantedBy=multi-user.target