toml design

trackers
exporter
rules

[trackers]
enable = ["process", "tcp", "syscall"]

[process]
min_duration = 20
cgroup_id = 1

[exporter]
enable = ["prometheus", "json", "influxdb"]

[prometheus]
endpoint ="127.0.0.1"
port = 6789

[rules]
enable = ["rule1", "rule2"]

[rule1]
type = "syscall"
name = "bpf..."
error_message = "error: bpf exec"

[rule2]
type = "file"
name = "/proc/xxx

type = "syscall"
sycall = "xxxxx"

[seccomp]
allow = ["read","write", "connect"]

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

toml_design.md

toml_design.md

toml design

Files

toml_design.md

Latest commit

History

toml_design.md

File metadata and controls

toml design