{"id":13453039,"url":"https://github.com/draios/sysdig","last_synced_at":"2025-05-12T11:17:23.036Z","repository":{"id":37444948,"uuid":"15926180","full_name":"draios/sysdig","owner":"draios","description":"Linux system exploration and troubleshooting tool with first class support for containers","archived":false,"fork":false,"pushed_at":"2025-03-07T10:44:54.000Z","size":180603,"stargazers_count":7989,"open_issues_count":118,"forks_count":737,"subscribers_count":300,"default_branch":"dev","last_synced_at":"2025-05-11T11:09:46.173Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"http://www.sysdig.com/","language":"C++","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/draios.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"COPYING","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2014-01-15T05:45:17.000Z","updated_at":"2025-05-11T09:21:34.000Z","dependencies_parsed_at":"2023-12-11T18:34:45.669Z","dependency_job_id":"0c5624ba-4b9d-413f-881b-b9732c717d6e","html_url":"https://github.com/draios/sysdig","commit_stats":null,"previous_names":[],"tags_count":366,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/draios%2Fsysdig","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/draios%2Fsysdig/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/draios%2Fsysdig/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/draios%2Fsysdig/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/draios","download_url":"https://codeload.github.com/draios/sysdig/tar.gz/refs/heads/dev","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253554090,"owners_count":21926614,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-07-31T08:00:31.748Z","updated_at":"2025-05-11T11:10:04.565Z","avatar_url":"https://github.com/draios.png","language":"C++","readme":"sysdig\n======\n[![CI Build](https://github.com/draios/sysdig/actions/workflows/ci.yaml/badge.svg)](https://github.com/draios/sysdig/actions/workflows/ci.yaml) ![GitHub release (latest SemVer)](https://img.shields.io/github/v/release/draios/sysdig)\n\n\u003cp align=\"center\"\u003e\u003cimg src=\"https://raw.githubusercontent.com/draios/sysdig/dev/img/logo_large.png\" width=\"360\"\u003e\u003c/p\u003e\n\u003cp align=\"center\"\u003e\u003cb\u003eDig Deeper\u003c/b\u003e\u003c/p\u003e\n\n\u003chr\u003e\n\n**Sysdig** is a universal system visibility tool with native support for containers:  \n`~$ sysdig`\n\n**Csysdig** is a simple, intuitive, and fully customizable curses UI for sysdig:  \n`~$ csysdig`\n\nGetting Started\n---\n\nRun Sysdig in a container:\n\n```\nsudo docker run --rm -i -t --privileged --net=host \\\n    -v /var/run/docker.sock:/host/var/run/docker.sock \\\n    -v /dev:/host/dev \\\n    -v /proc:/host/proc:ro \\\n    -v /boot:/host/boot:ro \\\n    -v /src:/src \\\n    -v /lib/modules:/host/lib/modules:ro \\\n    -v /usr:/host/usr:ro \\\n    -v /etc:/host/etc:ro \\\n    docker.io/sysdig/sysdig\n```\n\nAnd then run the `sysdig` or `csysdig` tool from the container shell!\n\nOr install the [latest release](https://github.com/draios/sysdig/releases/latest) with a `deb` or `rpm` package for your distribution.\n\nWhat does sysdig do and why should I use it?\n---\n**Sysdig is a simple tool for deep system visibility, with native support for containers.**\n\nThe best way to understand sysdig is to [try it](https://github.com/draios/sysdig/wiki/How-to-Install-Sysdig-for-Linux) - its super easy! Or here's a quick video introduction to csysdig, the simple, intuitive, and fully customizable curses-based UI for sysdig: https://www.youtube.com/watch?v=UJ4wVrbP-Q8\n\nFar too often, system-level monitoring and troubleshooting still involves logging into a machine with SSH and using a plethora of dated tools with very inconsistent interfaces. And many of these classic Linux tools breakdown completely in containerized environments. Sysdig unites your Linux toolkit into a single, consistent, easy-to-use interface. And sysdig's unique architecture allows deep inspection into containers, right out of the box, without having to instrument the containers themselves in any way.\n\nSysdig instruments your physical and virtual machines at the OS level by installing into the Linux kernel and capturing system calls and other OS events. Sysdig also makes it possible to create trace files for system activity, similarly to what you can do for networks with tools like tcpdump and Wireshark. This way, problems can be analyzed at a later time, without losing important information. Rich system state is stored in the trace files, so that the captured activity can be put into full context.\n\nThink about sysdig as strace + tcpdump + htop + iftop + lsof + ...awesome sauce.\n\nDocumentation / Support\n---\n[Visit the wiki](https://github.com/draios/sysdig/wiki) for full documentation on sysdig and its APIs.  \n\nFor support using sysdig, please contact [the official mailing list](https://groups.google.com/forum/#!forum/sysdig).  \n\nJoin the Community\n---\n* Contact the [official mailing list](https://groups.google.com/forum/#!forum/sysdig) for support and to talk with other users\n* Follow us on [Twitter](https://twitter.com/sysdig)\n* This is our [blog](https://sysdig.com/blog/). There are many like it, but this one is ours.\n* Join our [Public Slack](https://slack.sysdig.com) channel for sysdig announcements and discussions.\n\nOur [code of conduct](CODE_OF_CONDUCT.md) applies across all our projects and community places.\n\nLicense Terms\n---\nThe sysdig userspace programs and supporting code are licensed to you under the [Apache 2.0](./COPYING) open source license.\n\nDeveloper Certification of Origin (DCO)\n---\nThe Apache 2.0 license tells you what rights you have that are provided by the copyright holder. It is important that the contributor fully understands what rights they are licensing and agrees to them. Sometimes the copyright holder isn't the contributor, such as when the contributor is doing work on behalf of a company.\n\nTo make a good faith effort to ensure these criteria are met, we require the Developer Certificate of Origin (DCO) process to be followed.\n\nThe DCO is an attestation attached to every contribution made by every developer. In the commit message of the contribution, the developer simply adds a Signed-off-by statement and thereby agrees to the DCO, which you can find at http://developercertificate.org.\n\n### DCO Sign-Off Methods\nThe DCO requires a sign-off message in the following format appear on each commit in the pull request:\n\n```\nSigned-off-by: John Doe \u003cjohn.doe@sysdig.com\u003e\n```\n\nYou have to use your real name (sorry, no pseudonyms or anonymous contributions).\n\nThe DCO text can either be manually added to your commit body, or you can add either `-s` or `--signoff` to your usual `git commit` commands. If you are using the GitHub UI to make a change, you can add the sign-off message directly to the commit message when creating the pull request. If you forget to add the sign-off you can also amend a previous commit with the sign-off by running `git commit --amend -s`. If you've pushed your changes to GitHub already you'll need to force push your branch after this with `git push -f`.\n\nCommercial Support\n---\nInterested in a fully supported, fully distributed version of sysdig? Check out [Sysdig Monitor](https://sysdig.com/products/monitor/)!\n\nOpen source sysdig is proudly supported by [Sysdig Inc](https://sysdig.com/company/).  \n\nInterested in what we're doing? [Sysdig is hiring](https://sysdig.com/jobs/).\n\nReporting a vulnerability\n---\nPlease refer to [SECURITY.md](SECURITY.md).\n","funding_links":[],"categories":["C++","Threat Detection and Hunting","Lua","Tools","Troubleshooting","others","工具与代码库","Table of Contents","0x02 工具 :hammer_and_wrench:"],"sub_categories":["Tools","Detection","Jenkins","平台与工具安全专题","2 云原生工具"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdraios%2Fsysdig","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdraios%2Fsysdig","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdraios%2Fsysdig/lists"}