changliwei 最近的时间轴更新
changliwei's repos on GitHub
2 人关注
awesomewm-laptop
My AwesomeWM laptop repo taken from PDQ and modified to work on my machine
Shell · 1 人关注
CentOS-KVM-Image-Tools
Tools for creating CentOS gold images, and deploying KVM virtual machines from such images using virt-install.
JavaScript · 0 人关注
12306_ticket_helper
用于辅助在12306.CN上购票的Chrome&Firefox脚本
Python · 0 人关注
anaconda
Anaconda turns your Sublime Text 3 in a full featured Python development IDE including autocompletion, code linting, IDE features, autopep8 formating, McCabe complexity checker and Vagrant for Sublime Text 3 using Jedi, PyFlakes, pep8, PyLint, pep257 and McCabe that will never freeze your Sublime Text 3
CSS · 0 人关注
analytics.usa.gov
The US federal government's web traffic.
C · 0 人关注
android-manet-manager
SPAN - Android Manet Manager
Shell · 0 人关注
ansible-tuto
Ansible tutorial
0 人关注
api-standards
0 人关注
Awesome-WM-config
My Awesome WM configurations
CSS · 0 人关注
azure-content
Repository containing the Articles on windowsazure.com Documentation Center
0 人关注
bash-style-guide
A style guide for writing safe, predictable, and portable bash scripts (not sh!)
0 人关注
billgates-botnet-tracker
Some tools to monitor BillGates CnC servers
TypeScript · 0 人关注
bitcoin
Bitcoin integration/staging tree
0 人关注
book
学习笔记
JavaScript · 0 人关注
bootstrap
Sleek, intuitive, and powerful front-end framework for faster and easier web development.
Shell · 0 人关注
brootkit
Lightweight rootkit implemented by bash shell scripts v0.10
Shell · 0 人关注
cfg2html
Cfg2html is a UNIX shell script similar to supportinfo, getsysinfo or get_config, except that it creates a HTML (and plain ASCII) system documentation for HP-UX, SCO-UNIX, AIX, Sun OS and Linux systems. Plug-ins for SAP, Oracle, Informix, Serviceguard, Fiber Channel/SAN, TIP/ix, OpenText (IXOS/LEA), SN Mass Storage like MAS, EMC, EVA, XPs, Network Node Manager and DataProtector etc. are included. The first versions of cfg2html were written for HP-UX. Meanwhile the cfg2html HP-UX stream was ported to all major *NIX platforms and small embedded systems.
CSS · 0 人关注
changliwei.github.io
Changliwei's Blog
Python · 0 人关注
cloudbase-init
cloud-init for Windows and other OSs
Go · 0 人关注
cnki-downloader
知网(CNKI)文献下载工具
Python · 0 人关注
compass-core
Automating Distributed System Deployment to Baremetal Resources
Scala · 0 人关注
CoolplaySpark
酷玩 Spark
C · 0 人关注
decode-memcached
memcached 源码剖析注释
C++ · 0 人关注
diskspd
DISKSPD is a storage load generator / performance test tool from the Windows/Windows Server and Cloud Server Infrastructure Engineering teams
0 人关注
doc
open-falcon documents
Shell · 0 人关注
docker-images
Official source for Oracle-supported Docker images.
0 人关注
docs
gopherchina website docs
VimL · 0 人关注
dotvim
My Vim setup, using vundle
Python · 0 人关注
Dshell
Dshell is a network forensic analysis framework.
PHP · 0 人关注
DVWA
Damn Vulnerable Web Application
changliwei

changliwei

我思故我在
🏢  Ops
V2EX 第 171140 号会员,加入于 2016-04-29 13:03:35 +08:00
changliwei 最近回复了
2020-04-10 14:47:16 +08:00
回复了 stern123 创建的主题 Linux [求指导] Linux 服务器磁盘规划
NVMe SSD ?
可以实时 csysdiag 程序查看,
sysdig 这个工具的原理不是读取 /proc/的统计值,通过加载一个内核模块,对内核插入各种探测点,动态采集原始数据,再进行分析,恶意软件的隐身原理对 sysdig 不适用了.

top/iotop/lsof/netstat /ps 等工具都是 /proc 下内核统计值工作的工具,很容易被恶意软件的隐藏没法查看。

安装 csysdiag 就可以查看,centos
curl -s https://s3.amazonaws.com/download.draios.com/stable/install-sysdig | sudo bash


Viewing: Processes For: whole machine
Source: Live System Filter: evt.type!=switch
PID CPU USER TH VIRT RES FILE NET Command
4101 100.00 1 317M 5M 0 0.00 <NA>
1012 4.00 root 1 118M 19M 0 0.00 csysdig
30087 0.50 1 4G 3G 0 0.00 <NA>
30084 0.50 1 4G 3G 0 0.00 <NA>
29063 0.50 1 3G 2G 0 0.00 <NA>
9387 0.50 1 4G 3G 0 0.00 <NA>
4058 0.50 1 108M 40M 0 1.69K <NA>




[root@centos ]# ls -l /prox/4101
total 0
dr-xr-xr-x 2 root root 0 Feb 21 18:43 attr
-rw-r--r-- 1 root root 0 Feb 21 18:43 autogroup
-r-------- 1 root root 0 Feb 21 18:43 auxv
-r--r--r-- 1 root root 0 Feb 21 18:43 cgroup
--w------- 1 root root 0 Feb 21 18:43 clear_refs
-r--r--r-- 1 root root 0 Feb 21 18:43 cmdline
-rw-r--r-- 1 root root 0 Feb 21 18:43 comm
-rw-r--r-- 1 root root 0 Feb 21 18:43 coredump_filter
-r--r--r-- 1 root root 0 Feb 21 18:43 cpuset
lrwxrwxrwx 1 root root 0 Feb 21 18:43 cwd -> /
-r-------- 1 root root 0 Feb 21 18:43 environ
lrwxrwxrwx 1 root root 0 Feb 21 18:43 exe -> /tmp/ksoftirqds (deleted)
成都有哪些岗位呢
2019-01-02 12:37:29 +08:00
回复了 cache 创建的主题 云计算 有什么云平台支持 nested virtualization?
vmx 指令没有给虚拟机定义
2018-12-03 20:14:31 +08:00
回复了 1500176279 创建的主题 程序员 华为关闭解锁现在还有没有路子可以解 BL
某宝 200 多,淘宝小二说之所以这么贵,解锁是找外国友人。
关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   实用小工具   ·   5833 人在线   最高记录 6679   ·     Select Language
创意工作者们的社区
World is powered by solitude
VERSION: 3.9.8.5 · 19ms · UTC 02:15 · PVG 10:15 · LAX 18:15 · JFK 21:15
Developed with CodeLauncher
♥ Do have faith in what you're doing.