this post was submitted on 03 Sep 2024
1 points (100.0% liked)

Technical Information Security Content & Discussion

8 readers
1 users here now

/r/netsec is a community-curated aggregator of technical information security content. Our mission is to extract signal from the noise — to...

founded 1 year ago
MODERATORS
[email protected]
1
Traceeshark: Deep Linux runtime visibility meets Wireshark (github.com)
submitted 2 months ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments
 
The original post: /r/netsec by /u/Pale_Fly_2673 on 2024-09-02 20:58:03.

Traceeshark: integrates Linux runtime security monitoring and system tracing with Wireshark, allowing users to load Tracee captures in JSON format into Wireshark for analysis. It enables the examination of system events alongside network packets, offering rich context about processes and containers. Additionally, Traceeshark allows for real-time event capture from Tracee directly within Wireshark, whether on a local machine, a semi-local setup using Docker on Windows/Mac, or remotely via SSH.

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here