-
Notifications
You must be signed in to change notification settings - Fork 0
/
readme
31 lines (28 loc) · 1.77 KB
/
readme
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
tools:
- name: strace
description: strace is a diagnostic, debugging and instructional userspace utility for Linux. It is used
to monitor and tamper with interactions between processes and the Linux kernel, which include
system calls, signal deliveries, and changes of process state.
url: https://man7.org/linux/man-pages/man1/strace.1.html
- name: ltrace
description: ltrace is a diagnostic, debugging and instructional userspace utility for Linux. It is used
to monitor and tamper with interactions between processes and the shared libraries they call.
url: https://man7.org/linux
- name: ftrace
description: ftrace is a official kernel tracing tool. It is used to monitor and tamper with interactions
between processes and the Linux kernel, which include system calls, signal deliveries, and
changes of process state.
url: https://www.kernel.org/doc/html/latest/trace/ftrace.html
install: sudo apt-get update && sudo apt-get install -y trace-cmd
bpf:
- name: bpftrace
description: bpftrace is a high-level tracing language and runtime for Linux enhanced Berkeley Packet Filter
(eBPF). It supports static and dynamic tracing for both the kernel and user applications.
url: https://github.com/iovisor/bpftrace
install: sudo apt-get update && sudo apt-get install -y bpftrace
linux:
- feat: seccomp
description: seccomp is a Linux kernel feature that allows a process to make a one-way transition into a
"secure" state where it cannot make any system calls except exit(), sigreturn(), and read()
and write() to already-open file descriptors. This is useful for sandboxing untrusted applications.
url: https://www.kernel.org/doc/Documentation/prctl/seccomp_filter.txt