summaryrefslogtreecommitdiff
path: root/bpftrace-checkping
blob: 2b99c7b3cd585b683fab86b44c6043947c736ab4 (plain) 
1

sudo bpftrace -e 'tracepoint:syscalls:sys_enter_execve { $f = str(args->filename); if ($f == "/usr/bin/ping" || $f == "/bin/ping") { printf("PID %d (%s) executed ping\n", pid, comm); } }'
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-31 07:10:04 +0000