Skip to content

Latest commit

 

History

History
31 lines (28 loc) · 1.04 KB

README.md

File metadata and controls

31 lines (28 loc) · 1.04 KB

cubostratus is a high performance Linux syscall collector. It acquires the syscall flow from the rock solid sysdig driver and emits it to Kafka brokers for later ingestion, storage and analysis.

Usage

  1. Build the sysdig kernel module or install sysdig
  2. Install Rust
curl -f -L https://static.rust-lang.org/rustup.sh -O
sh rustup.sh
  1. Clone this repository and build cubostratusc
git clone https://github.com/rabbitstack/cubostratusc.git
cd cubostratusc
cargo build
  1. Modify cubostratusc.toml configuration descriptor
export CUBOSTRATUSC_CONFIG=cubostratusc.toml # or
sudo cp cubostratusc.toml /etc
  1. Create a Kafka topic and start cubostratusc:
bin/kafka-topics.sh --create --zookeeper localhost:2181 --replication-factor 1 \
                    --partitions 1 --topic cubostratus
sudo ./target/debug/cubostratusc