sysdig is an open source system-level exploration and troubleshooting tool.
Sysdig captures system calls and other system level events using a linux kernel facility called tracepoints, which means much less overhead than strace. It then packetizes this information, so that you can save it into trace files and filter it, a bit like you would do with tcpdump. This makes it very flexible to explore what processes are doing. Sysdig is also packed with a set of scripts that make it easier to extract useful information and do troubleshooting.
NOTE: currently only the Linux version of sysdig is capable of capturing events and doing live analysis. On the other platforms, you will be limited to working with the trace files generated by a Linux installation of sysdig.
Sysdig captures system calls and other system level events using a linux kernel facility called tracepoints, which means much less overhead than strace. It then packetizes this information, so that you can save it into trace files and filter it, a bit like you would do with tcpdump. This makes it very flexible to explore what processes are doing. Sysdig is also packed with a set of scripts that make it easier to extract useful information and do troubleshooting.
NOTE: currently only the Linux version of sysdig is capable of capturing events and doing live analysis. On the other platforms, you will be limited to working with the trace files generated by a Linux installation of sysdig.
To install sysdig, run the following command in macOS terminal (Applications->Utilities->Terminal)
sudo port install sysdig
To see what files were installed by sysdig, run:
port contents sysdig
To later upgrade sysdig, run:
sudo port selfupdate && sudo port upgrade sysdig
Reporting an issue on MacPorts Trac
The MacPorts Project uses a system called Trac to file tickets to report bugs and enhancement requests.
Though anyone may search Trac for tickets, you must have a GitHub account in order to login to Trac to create tickets.