Press release

Guardicore Unveils IPCDump, a New Open Source Tool for Tracing Interprocess Communication on Linux

0
Sponsored by Businesswire

Guardicore, the segmentation company disrupting the legacy firewall market, announced the availability of IPCDump, a new open source tool for tracing interprocess communication on Linux. The tool covers most interprocess communication (IPC) mechanisms, including pipes, fifos, signals, Unix sockets, loopback-based networking, and pseudoterminals, and is useful for debugging multi-process applications and gaining transparency into how they communicate with one another in their IT environment.

Modern applications have distinct processes that plug into one another in a black box, creating significant challenges for developers when something breaks. This issue is particularly true for debugging complex multiprocess applications. IPCDump solves this problem by tracing both the metadata and contents of apps’ communication and tracing IPC between short-lived processes.

Security practitioners can also use the open source tool to explore how business apps communicate with internal and external systems. IPCDump can also easily track short-lived processes’ creation and destruction, a tedious task that typically requires security and IT teams to check port numbers against netstat manually. Additional features include:

  • Support for pipes and FIFOs
  • Loopback IPC
  • Signals (regular and real-time)
  • Unix streams and datagrams
  • Pseudoterminal-based IPC
  • Event filtering based on process PID or name
  • Human-friendly or JSON-formatted output

“IPCDump is the natural byproduct of our talented R&D team’s efforts to push the technical boundaries of our segmentation platform,” said Guardicore VP of Research Ofri Ziv. “Rather than let it go to waste, our team wanted to show our commitment to the development and security communities by sharing a useful open source debugging tool.”

To download the IPCDump debugging tool, visit https://github.com/guardicore/ipcdump.

About Guardicore

Guardicore is the segmentation company disrupting the legacy firewall market. Our software-only approach is decoupled from the physical network, providing a faster alternative to firewalls. Built for the agile enterprise, Guardicore offers greater security and visibility in the cloud, data-center, and endpoint. For more information, please visit www.guardicore.com or go to Twitter or LinkedIn.