Processes which have open network sockets on the system.

Platform support

Please be aware that some queries can only be run against certain platforms. Below is a list of the supported platforms that this query supports. Zercurity will automatically pause queries from running if errors are detected. Running a query against an unsupported platform will result in the following error: no such table: process_open_sockets

  • Windows
  • Linux
  • Mac OSX
  • Free BSD

Table schema

Name Type Description
pid INTEGER Process (or thread) ID
fd BIGINT Socket file descriptor number
socket BIGINT Socket handle or inode number
family INTEGER Network protocol (IPv4, IPv6)
protocol INTEGER Transport protocol (TCP/UDP)
local_address TEXT Socket local address
remote_address TEXT Socket remote address
local_port INTEGER Socket local port
remote_port INTEGER Socket remote port
path TEXT For UNIX sockets (family=AF_UNIX), the domain path

Query examples

select * from process_open_sockets where pid = 1