nowsecure / Fsmon
Licence: mit
monitor filesystem on iOS / OS X / Android / FirefoxOS / Linux
Stars: ✭ 635
Programming Languages
c
50402 projects - #5 most used programming language
Projects that are alternatives of or similar to Fsmon
secfs.test
Secfs Test Collection - Collection of File System Test Programs
Stars: ✭ 37 (-94.17%)
Mutual labels: osx, filesystem
Sparsebundlefs
FUSE filesystem for reading macOS sparse-bundle disk images
Stars: ✭ 238 (-62.52%)
Mutual labels: osx, filesystem
S5cmd
Parallel S3 and local filesystem execution tool.
Stars: ✭ 565 (-11.02%)
Mutual labels: filesystem
Familybucket
集合.net core、ocelot、consul、netty、rpc、eventbus、configserver、tracing、sqlsugar、vue-admin、基础管理平台等构建的微服务一条龙应用
Stars: ✭ 629 (-0.94%)
Mutual labels: tracing
Filesystem
An implementation of C++17 std::filesystem for C++11 /C++14/C++17/C++20 on Windows, macOS, Linux and FreeBSD.
Stars: ✭ 603 (-5.04%)
Mutual labels: filesystem
Tinydir
Lightweight, portable and easy to integrate C directory and file reader
Stars: ✭ 575 (-9.45%)
Mutual labels: filesystem
Gf
GoFrame is a modular, powerful, high-performance and enterprise-class application development framework of Golang.
Stars: ✭ 6,501 (+923.78%)
Mutual labels: tracing
Awesome Symbolic Execution
A curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.
Stars: ✭ 634 (-0.16%)
Mutual labels: dynamic-analysis
Crosshair
An analysis tool for Python that blurs the line between testing and type systems.
Stars: ✭ 586 (-7.72%)
Mutual labels: dynamic-analysis
Habomalhunter
HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
Stars: ✭ 627 (-1.26%)
Mutual labels: dynamic-analysis
Tools Osx
A small collection of command line tools for Mac OS X, incl.: clipcat, dict, eject, launch, ql, swuser, trash & with.
Stars: ✭ 576 (-9.29%)
Mutual labels: osx
Osx Iso
Create a bootable ISO of OS X / macOS, from the installation app file
Stars: ✭ 616 (-2.99%)
Mutual labels: osx
S3fs Fuse
FUSE-based file system backed by Amazon S3
Stars: ✭ 5,733 (+802.83%)
Mutual labels: filesystem
Zsh Z
Jump quickly to directories that you have visited "frecently." A native ZSH port of z.sh.
Stars: ✭ 562 (-11.5%)
Mutual labels: filesystem
Xcnotary
the missing macOS app notarization helper, built with Rust
Stars: ✭ 589 (-7.24%)
Mutual labels: osx
Orsserialport
Serial port library for Objective-C and Swift macOS apps
Stars: ✭ 609 (-4.09%)
Mutual labels: osx
Jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Stars: ✭ 633 (-0.31%)
Mutual labels: dynamic-analysis
fsmon
FileSystem Monitor utility that runs on Linux, Android, iOS and OSX.
Brought to you by Sergi Àlvarez at Nowsecure and distributed under the MIT license.
Contact: [email protected]
Usage
The tool retrieves file system events from a specific directory and shows them in colorful format or in JSON.
It is possible to filter the events happening from a specific program name or process id (PID).
$ ./fsmon -h
Usage: ./fsmon-macos [-Jjc] [-a sec] [-b dir] [-B name] [-p pid] [-P proc] [path]
-a [sec] stop monitoring after N seconds (alarm)
-b [dir] backup files to DIR folder (EXPERIMENTAL)
-B [name] specify an alternative backend
-c follow children of -p PID
-f show only filename (no path)
-h show this help
-j output in JSON format
-J output in JSON stream format
-n do not use colors
-L list all filemonitor backends
-p [pid] only show events from this pid
-P [proc] events only from process name
-v show version
[path] only get events from this path
Examples:
fsmon /data
fsmon -J / | jq -r .filename
fsmon -B fanotify /home
$
Backends
fsmon filesystem information is taken from different backends depending on the operating system and apis available.
This is the list of backends that can be listed with fsmon -L:
- inotify (linux / android)
- fanotify (linux > 2.6.36 / android with custom kernel)
- devfsev (osx /dev/fsevents - requires root)
- kqueue (xnu - requires root)
- kdebug (bsd?, xnu - requires root)
- fsevapi (osx filesystem monitor api)
Compilation
fsmon is a portable tool. It works on iOS, OSX, Linux and Android (x86, arm, arm64, mips)
Linux
$ make
OSX + iOS fatbin
$ make
iOS
$ make ios
Android
$ make android NDK_ARCH=<ARCH> ANDROID_API=<API>
To get fsmon installed system wide just type:
$ make install
Changing installation path...
$ make install PREFIX=/usr DESTDIR=/
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].