process_open_sockets

Processes which have open network sockets on the system.

Platform support

Please be aware that some queries can only be run against certain platforms. Below is a list of the supported platforms that this query supports. Zercurity will automatically pause queries from running if errors are detected. Running a query against an unsupported platform will result in the following error: no such table: process_open_sockets

  • Windows

  • Linux

  • Mac OSX

  • Free BSD

Table schema

Name

Type

Description

pid

INTEGER

Process (or thread) ID

fd

BIGINT

Socket file descriptor number

socket

BIGINT

Socket handle or inode number

family

INTEGER

Network protocol (IPv4, IPv6)

protocol

INTEGER

Transport protocol (TCP/UDP)

local_address

TEXT

Socket local address

remote_address

TEXT

Socket remote address

local_port

INTEGER

Socket local port

remote_port

INTEGER

Socket remote port

path

TEXT

For UNIX sockets (family=AF_UNIX), the domain path

net_namespace

TEXT

The inode number of the network namespace

Query examples

select * from process_open_sockets where pid = 1