Skip to content

Instantly share code, notes, and snippets.

@vladiibine

vladiibine/sysdig-commands.md

Last active April 6, 2016 14:48
Show Gist options
  • Save vladiibine/246dd65a2a5fc76ad30deb80724ec0ba to your computer and use it in GitHub Desktop.
Save vladiibine/246dd65a2a5fc76ad30deb80724ec0ba to your computer and use it in GitHub Desktop.
Download ZIP
sysdig commands
Raw
sysdig-commands.md

#Get help here http://www.sysdig.org/wiki/sysdig-user-guide/

Show every time a file is opened under /etc.

sudo sysdig evt.type=open and fd.name contains /etc

Sysdig output format

*%evt.num %evt.time %evt.cpu %proc.name (%thread.tid) %evt.dir %evt.type %evt.args

Filter by process name

sysdig proc.name=asdfg and proc.name!=petre

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment