Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory :  /opt/rh/gcc-toolset-11/root/usr/share/systemtap/examples/process/

Upload File : current_dir [ Writeable ] document_root [ Writeable ]

title: Monitor process creation/termination and module [un]loading
name: procmod_watcher.stp
version: 1.0
author: Jonathan Lebon
keywords: process monitoring syscall tracepoint
subsystem: process
status: production
exit: user-controlled
output: trace
scope: process
description: The procmod_watcher.stp script monitors calls to fork(), exec(), exit(), init_module(), and delete_module(). Event-specific details are also printed out (e.g. for exec(), the file being exec'ed). This script does not require debuginfo.
test_support: stap -l 'kernel.trace("module_load")'
test_check: stap -p4 procmod_watcher.stp
test_installcheck: stap procmod_watcher.stp -T 1