This utility allows users to track changes in a specified file and prints a timestamp when modifications occur.
MIT License
ebpf-file-monitor
is a slick Rust program that keeps an eagle-eye on your files and alerts you the moment changes occur!
# Clone this puppy
git clone https://github.com/mranv/ebpf-file-monitor.git
# Hop into the directory
cd ebpf-file-monitor
# Install bcc and libbpf if needed
# For Fedora/RedHat:
sudo yum install bcc bpf
# For Debian/Ubuntu:
sudo apt-get install libbpf-dev libbcc-dev
# Build
cargo build --release
Update the FILE_PATH
to the file you want to keep an eye on.
Let this watchdog loose:
./target/release/ebpf-file-monitor
Now it'll print a timestamp immediately when that file changes.
So you can catch co-workers messing with your stuff! Or track edits on your top secret novel.
open
and write
syscalls.Ideas to improve this little watchdog are welcome! Woof woof!