Profiling of Kubearmor Logs using karmor

karmor profile provides a real-time terminal UI that visualizes security-relevant activity observed by KubeArmor, including Process, File, and Network events. It fetches live data from the KubeArmor logs API, displays counters and key details for each event type, and supports easy navigation and filtering.

🔍 Filtering Logs with `karmor profile`

The karmor profile command allows you to filter logs or alerts using a set of useful flags. These filters help narrow down the output to specific Kubernetes objects like containers, pods, and namespaces.

🧰 Available Filters

Flag

Description

-c, --container

Filters logs by container name.

-n, --namespace

Filters logs by Kubernetes namespace.

--pod

Filters logs by pod name.

📌 Usage Examples

✅ Filter by Container Name

karmor profile -c nginx

Outputs logs only from the container named nginx.

✅ Filter by Namespace

karmor profile -n nginx1

Outputs logs only from the namespace nginx1.

✅ Filter by Pod

karmor profile --pod nginx-pod-1

Outputs logs only from the pod named nginx-pod-1.

🔗 Combine Multiple Filters

You can combine filters to narrow down the logs even further.

karmor profile -n nginx1 -c nginx

Outputs logs only from the nginx container in the nginx1 namespace.

💡 Tip

Use these filters during profiling sessions to quickly isolate behavior or security events related to a specific pod, container, or namespace.

PreviousPolicy Examples for Nodes/VMs NextFAQs

Last updated 1 month ago

Was this helpful?

🔍 Filtering Logs with karmor profile