mirror of
https://github.com/tldr-pages/tldr.git
synced 2025-04-29 23:24:55 +02:00
ae436c1b00
* batch1 * batch2 * batch3 * batch4 * Update matchpathcon.md * Update pages/linux/arecord.md Co-authored-by: Lena <126529524+acuteenvy@users.noreply.github.com> * Update pages/linux/arecord.md Co-authored-by: Lena <126529524+acuteenvy@users.noreply.github.com> * Update pages/linux/arecord.md Co-authored-by: Wiktor Perskawiec <git@spageektti.cc> --------- Co-authored-by: Lena <126529524+acuteenvy@users.noreply.github.com> Co-authored-by: Wiktor Perskawiec <git@spageektti.cc>
33 lines
880 B
Markdown
33 lines
880 B
Markdown
# sysdig
|
|
|
|
> System troubleshooting, analysis and exploration.
|
|
> Capture, filter and store systemcalls.
|
|
> More information: <https://github.com/draios/sysdig/wiki>.
|
|
|
|
- Capture all the events from the live system and print them to screen:
|
|
|
|
`sysdig`
|
|
|
|
- Capture all the events from the live system and save them to disk:
|
|
|
|
`sysdig {{[-w|--write]}} {{path/to/file}}.scap`
|
|
|
|
- Read events from a file and print them to screen:
|
|
|
|
`sysdig {{[-r|--read]}} {{path/to/file}}.scap`
|
|
|
|
- Filter and Print all the open system calls invoked by cat:
|
|
|
|
`sysdig proc.name=cat and evt.type=open`
|
|
|
|
- Register any found plugin and use dummy as input source passing to it open params:
|
|
|
|
`sysdig -I dummy:'{{parameter}}'`
|
|
|
|
- List the available chisels:
|
|
|
|
`sysdig {{[-cl|--list-chisels]}}`
|
|
|
|
- Use the spy_ip chisel to look at the data exchanged with ip address:
|
|
|
|
`sysdig {{[-c|--chisel]}} spy_ip {{ip_address}}`
|