https://github.com/Sysinternals/ProcMon-for-Linux/

Process Monitor for Linux (Preview)

Process Monitor (Procmon) is a Linux reimagining of the classic Procmon tool from the Sysinternals suite of tools for Windows. Procmon provides a convenient and efficient way for Linux developers to trace the syscall activity on the system.

Procmon in use

Installation & Usage

Requirements

• OS: Ubuntu 18.04 lts
• cmake >= 3.14 (build-time only)
• libsqlite3-dev >= 3.22 (build-time only)

Install Procmon

Checkout our install instructions for distribution specific steps to install Procmon.

Building Procmon from source

1. Install build dependencies

sudo apt-get -y install bison build-essential flex git libedit-dev \\
 libllvm6.0 llvm-6.0-dev libclang-6.0-dev python zlib1g-dev libelf-dev

2. Build Procmon

git clone <https://github.com/Microsoft/Procmon-for-Linux>
cd Procmon-for-Linux
mkdir build
cd build
cmake ..
make

Building Procmon Packages