Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

newproc.d(1m) [osx man page]

newproc.d(1m)							   USER COMMANDS						     newproc.d(1m)

NAME
newproc.d - snoop new processes. Uses DTrace. SYNOPSIS
newproc.d DESCRIPTION
newproc.d is a DTrace OneLiner to snoop new processes as they are run. The argument listing is printed. This is useful to identify short lived processes that are usually difficult to spot using traditional tools. Docs/oneliners.txt and Docs/Examples/oneliners_examples.txt in the DTraceToolkit contain this as a oneliner that can be cut-n-paste to run. Since this uses DTrace, only users with root privileges can run this command. EXAMPLES
This prints new processes until Ctrl-C is hit. # newproc.d FIELDS
CPU The CPU that recieved the event ID A DTrace probe ID for the event FUNCTION:NAME The DTrace probe name for the event remaining fields These contains the argument listing for the new process DOCUMENTATION
See the DTraceToolkit for further documentation under the Docs directory. The DTraceToolkit docs may include full worked examples with ver- bose descriptions explaining the output. EXIT
newproc.d will run forever until Ctrl-C is hit. AUTHOR
Brendan Gregg [Sydney, Australia] SEE ALSO
execsnoop(1M), dtrace(1M), truss(1) version 1.00 May 15, 2005 newproc.d(1m)

Check Out this Related Man Page

filebyproc.d(1m)						   USER COMMANDS						  filebyproc.d(1m)

NAME
filebyproc.d - snoop opens by process name. Uses DTrace. SYNOPSIS
filebyproc.d DESCRIPTION
filebyproc.d is a DTrace OneLiner to print file pathnames as they are opened, including the name of the process calling the open. A line will be printed regardless of whether the open is actually successful or not. This is useful to learn which files applications are attempting to open, such as config files, database files, log files, etc. Docs/oneliners.txt and Docs/Examples/oneliners_examples.txt in the DTraceToolkit contain this as a oneliner that can be cut-n-paste to run. Since this uses DTrace, only users with root privileges can run this command. EXAMPLES
This prints new process name and pathnames until Ctrl-C is hit. # filebyproc.d FIELDS
CPU The CPU that recieved the event ID A DTrace probe ID for the event FUNCTION:NAME The DTrace probe name for the event remaining fields The first is the name of the process, the second is the file pathname. DOCUMENTATION
See the DTraceToolkit for further documentation under the Docs directory. The DTraceToolkit docs may include full worked examples with ver- bose descriptions explaining the output. EXIT
filebyproc.d will run forever until Ctrl-C is hit. AUTHOR
Brendan Gregg [Sydney, Australia] SEE ALSO
opensnoop(1M), dtrace(1M), truss(1) version 1.00 May 15, 2005 filebyproc.d(1m)
Man Page

15 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

how to cntl^c in a script

can anyone please let me know how I can terminate a command Ex:"truss filename.truss.txt -p pid" after letting it run for 2sec in a korn shell script.In other words how can we emulate cntl^c in a script?? (3 Replies)
Discussion started by: Ravi Kanth
3 Replies

2. UNIX for Dummies Questions & Answers

qdaemon

I am being taught UNIX hands on. Recently, I have been having problems with my qdaemon going down. I know that the short cut to start it is startsrc -s qdaemon. My question is, through smit, processes & subsystems, subsystems, start a subsystem... I know it is the qdaemon I want to start,... (2 Replies)
Discussion started by: spunky
2 Replies

3. UNIX for Dummies Questions & Answers

Process --> Help

I made an skeletor (script) that use parameters for run diferents processes, my question is: I have PROCESS1 PROCESS2 PROCESS3 PROCESSN How many processes can run with the skeletor at the same time? How can run that processes in paralell (because, will run sequentially I think) Example... (3 Replies)
Discussion started by: ATROZ
3 Replies

4. UNIX for Advanced & Expert Users

Monitoring network traffic using snoop

I want to monitor network traffic. For this purpose i use snoop command. But snoop command only show those packets which are broadcasted or those packets which recieved by host. But I want to examine whole network traffic. Please tell me how to use snoop for monitoring whole network traffic or if... (3 Replies)
Discussion started by: mansoorulhaq
3 Replies

5. Solaris

snoop command

Hi. I'm trying to capture traffic with the snoop command using the net expression but I fail when a I've to specify a subnet ex: 10.201.64/18 Did you know the correct syntax? I've tried with snoop -ta -x0 net 10.201.64.0 255.255.192.0 but doesn't match. Thnx (4 Replies)
Discussion started by: kurtolo
4 Replies

6. Shell Programming and Scripting

need help with truss !

i have to gather some info about a process and redirect it to a1.txt file. For this i m using truss command truss -po a1.txt $PID_Detail where $PID_Detail= 1482944 3362976 -------------------------------------------------------------------------- Below the script: #!/bin/ksh for i... (6 Replies)
Discussion started by: ali560045
6 Replies

7. Shell Programming and Scripting

Grep returns nothing

Hi all, I am trying to grep a .txt file for a word. When I hit enter, it returns back to $ The file is 4155402 in size and is named in this way: *_eveningtimes_done_log.txt I use this command, being in the same directory as the file: grep -i "invalid" *_eveningtimes_done_log.txt ... (16 Replies)
Discussion started by: DallasT
16 Replies

8. Shell Programming and Scripting

listing Directory chronologically based on part of file name

hi Everbody, I had file names as shown file_01_20101104.txt file_01_20101105.txt file_02_20101104.txt file_01_20101205.txt file_03_20101104.txt file_02_20101105.txt Now i want to list them based on the date in the file name as shown... file_01_20101104.txt file_02_20101104.txt... (3 Replies)
Discussion started by: Reddy482
3 Replies

9. Shell Programming and Scripting

Parallel processes to INC- and DEC-rement shared counter

QUESTION: How do I run processes in parallel, so that the counter (in counter.txt) would vary in value (instead of just "0" and "1")? That is, how to not sequentially run inc.sh and dec.sh? The shared counter (a single number starting as 0) is in a file counter.txt. counter.sh is (supposed to... (2 Replies)
Discussion started by: courteous
2 Replies

10. UNIX for Dummies Questions & Answers

File Name Extract

Hi Team, I need help in using cut command .... my file name is appended with .txt ....line India.txt or America.txt, and I need to remove .txt and keep remaining part of file name for further processing.... How we can do that using cut or sed command. (5 Replies)
Discussion started by: manish8484
5 Replies

11. Shell Programming and Scripting

snoop script in background

Hi I want to write a script for snoop which can do snoop for 30 min and then process should be killed automatically I am using below codes #!/usr/bin/ksh snoop -d igb0 -o /opt/temp/abc.pcap sleep 1500 kill -9 `ps -ef|grep -i snoop |grep -v grep|awk '{print $2}'` But process is not... (3 Replies)
Discussion started by: anish19
3 Replies

12. UNIX for Dummies Questions & Answers

[Solved] How to remove listing of current user cmd from ps -ef listing?

Hi All, Could you please help to resolve my following issues: Problem Description: Suppose my user name is "MI90". i.e. $USER = MI90 when i run below command, i get all the processes running on the system containing name MQ. ps -ef | grep MQ But sometimes it lists... (8 Replies)
Discussion started by: KDMishra
8 Replies

13. Solaris

Live snoop analysis

Dears, I am trying to run a bash script to take a snoop on an interface with a certain port for like 5 minute and once the snoop is finished I need to parse the snoop file on unix/solaris without using WIRESHARK or ETHERAL. the snoop that I will capture will be for DIAMETER Protocol and... (4 Replies)
Discussion started by: jojo123
4 Replies

14. Solaris

How to read the output of snoop command?

Hi! I have run the following command: snoop -q -d e1000g0 -o /var/tmp/optima0.txt & them I am trying to read the output of it with snoop -i /var/tmp/optima0.txt, which is giving me this: # snoop -i /var/tmp/optima0.txt | more 1 0.00000 AIOPTSVR -> 10.100.4.72 TCP D=1393 S=22 Push... (8 Replies)
Discussion started by: fretagi
8 Replies

15. Shell Programming and Scripting

Match

Trying to match $1 in output.txt with $1 probe.txt, when a match is found in $6 of probe.txt the text in $5 of output is copied. For example, the first record in output.txt is A_16_P32713632 and that matches row 19318 in probe.txt, so in the 6 field (after 0.940798) of row 19318 ACTA2 is... (4 Replies)
Discussion started by: cmccabe
4 Replies