Aqua Security

Tracee

Tracee is a runtime security and forensics tool for Linux that uses eBPF technology to trace system events and detect suspicious behavioral patterns.

Documentation GitHub

Documentation

📖

Documentation

https://aquasecurity.github.io/tracee/

SDKs

📦

GitHubRepository

https://github.com/aquasecurity/tracee

API entry from apis.yml

aid: aqua-security:tracee
name: Tracee
description: Tracee is a runtime security and forensics tool for Linux that uses eBPF technology to trace
  system events and detect suspicious behavioral patterns.
humanURL: https://aquasecurity.github.io/tracee/
tags:
- eBPF
- Runtime Security
- Linux Security
- Forensics
- Open Source
properties:
- type: Documentation
  url: https://aquasecurity.github.io/tracee/
- type: GitHubRepository
  url: https://github.com/aquasecurity/tracee