Lyncean is a userspace utility tailored for diagnostics, debugging, and providing instructions, accessible via a classic command-line interface on Linux platforms. Unlike traditional tools such as strace, Lyncean stands out by utilizing eBPF. Lyncean is currently under development; the list of available system calls can be found at here. Additional system calls will be added soon, and contributions from the community are warmly welcomed.
For dependencies, it varies from distribution to distribution. On Ubuntu, you may run make install or
sudo apt-get install -y --no-install-recommends \
libelf1 libelf-dev zlib1g-dev \
make cmake clang llvmto install dependencies.
clone:
git clone https://github.com/aminassadi/lyncean.git --recursiveupdate submodules:
git submodule update --init --recursivebuild:
cd lyncean
mkdir build
cd build
cmake ..
make
cd test
sudo ./lyncean_test Lyncean allows tracing either by attaching to a specific process ID or executing a command directly. Moreover, it can trace child processes initiated by the traced process, especially when the -f or --follow-forks flag is utilized.
