maurorappa/gist:f1fac27162c53be87e46496eb3415fa5

Created October 9, 2024 06:57

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/maurorappa/f1fac27162c53be87e46496eb3415fa5.js"></script>
Save maurorappa/f1fac27162c53be87e46496eb3415fa5 to your computer and use it in GitHub Desktop.

Download ZIP

see all new created processes (pid, cmd and args)

Raw

gistfile1.txt

 bpftrace -e 'tracepoint:syscalls:sys_enter_exec*{ printf("pid: %d, comm: %s, args: ", pid, comm); join(args->argv); }

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment