Fork me on GitHub

Like sysdig? Want a kickass distributed version?

Check out Draios

A New System Troubleshooting Tool
Built for the Way You Work


Sysdig is open source, system-level exploration: capture system state and activity from a running Linux instance, then save, filter and analyze.
Think of it as strace + tcpdump + lsof + awesome sauce.
With a little Lua cherry on top.

How it works

A little taste of what sysdig can do:

Dump system activity to file, so that sysdig can be used to process it later.
~$ sysdig -w trace.scap
Print process name and connection details for each incoming connection not served by apache.
~$ sysdig -p ""
   "evt.type=accept and!=httpd"
See the files where apache spends the most
time doing I/O.
~$ sysdig -c topfiles_time
Show the network data that apache exchanged
~$ sysdig -A -c echo_fds fd.sip=
Show every time a file is opened under /etc.
~$ sysdig evt.type=open and
   contains /etc

See more examples >>

Sysdig was born from our own team's constant frustration. System level troubleshooting is just way more of a pain than it should be — especially in distributed, virtualized, and cloud-based environments.
So we took the lessons we learned while building network monitoring tools like WinPCap and Wireshark and created a new kind of system troubleshooting tool for Linux.

Sysdig gives you instant access to a treasure trove of data buried within your system. Rich and natural filtering and scripting make the data actionable and help you get the job done.
For pragmatic people, by pragmatic people. Sysdig will make you more productive in seconds.
Easy to
VMs get killed or just disappear. Collect the useful info in a trace and you can figure out what happened. Sysdig is designed for that.
Sysdig is built to run in production. By running as little code as possible in the kernel, sysdig minimizes performance overhead and the risk of crashes.
Fast and
Fits to Your
Not the other way around. Watch system activity in real time, or do a trace dump and analyze later.
Sysdig can be extended with Lua scripts that we call chisels. The ever growing chisel collection covers tons of troubleshooting, monitoring and security cases.

Like sysdig? Want a kickass distributed version?

Check out Draios