Skip to content
This repository has been archived by the owner on Jun 30, 2022. It is now read-only.
/ fsnoop Public archive

Dumps all filesystem events for a specific mount using the Linux fanotify interface

License

MIT license
2 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

itsjohannawren/fsnoop

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
cache.c
cache.c
 
 
cache.h
cache.h
 
 
dll.c
dll.c
 
 
dll.h
dll.h
 
 
fsnoop.c
fsnoop.c
 
 
fsnoop.h
fsnoop.h
 
 
resolve.c
resolve.c
 
 
resolve.h
resolve.h
 
 
stubs.h
stubs.h
 
 

Repository files navigation

fsnoop

Dumps all filesystem operations from the specified mount point using the Linux fanotify interface.

Requirements

  • Linux >= 2.6.36 compiled with fanotify support
  • Linux headers
  • Make
  • GCC

Building

Clone the repo and make

git clone https://github.com/jeffwalter/fsnoop.git
cd fsnoop
make

That's it.

Usage

To be completed...

About

Dumps all filesystem events for a specific mount using the Linux fanotify interface

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

0 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors 2

  •  
  •  

Languages