summaryrefslogtreecommitdiff
path: root/bpftrace-execve-2args
blob: aa6d3b811673735dfc76d218a371a4fe6e1c6657 (plain) 
1

sudo bpftrace -e 'tracepoint:syscalls:sys_enter_execve { printf("PID: %d, UID: %d, CMD: %s, TIME: %u, FILE: %s, ARGS: %s %s\n", pid,  uid, comm, nsecs, str(args->filename), str(args->argv[1]), str(args->argv[2]) ); }'
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-31 07:08:57 +0000