Packages and Binaries:


Cilium’s new Tetragon component enables powerful realtime, eBPF-based Security Observability and Runtime Enforcement.

Tetragon detects and is able to react to security-significant events, such as: - Process execution events - System call activity - I/O activity including network & file access

When used in a Kubernetes environment, Tetragon is Kubernetes-aware - that is, it understands Kubernetes identities such as namespaces, pods and so-on - so that security event detection can be configured in relation to individual workloads.

This package contains the tool tetra CLI.

Installed size: 65.72 MB
How to install: sudo apt install tetragon

  • bpftool
  • libc6
root@kali:~# tetra -h
Tetragon CLI

  tetra [flags]
  tetra [command]

Available Commands:
  bugtool         Produce a tar archive with debug information
  completion      Generate the autocompletion script for the specified shell
  getevents       Print events
  help            Help about any command
  probe           Probe for eBPF system features availability
  stacktrace-tree Manage stacktrace trees
  status          Print health status
  tracingpolicy   Manage tracing policies
  version         Print version from CLI and server

  -d, --debug                   Enable debug messages
  -h, --help                    help for tetra
      --retries int             Connection retries with exponential backoff
      --server-address string   gRPC server address
      --timeout duration        Connection timeout (default 10s)

Use "tetra [command] --help" for more information about a command.

Updated on: 2024-May-23