Stratoshark

Stratoshark provides a graphical interface for capturing and examining system‑call and log activity on macOS and other platforms. It builds on the same dissection and filtering engine used by Wireshark, allowing users to apply familiar filters and visualizations to application‑level behavior rather than network packets. The tool can read and write the file format employed by Falco and the Sysdig CLI, enabling seamless transition between those utilities and Stratoshark.

The software is aimed at developers, operators, and security analysts who need to troubleshoot or investigate the inner workings of applications, containers, and cloud services. By presenting system‑call streams and log messages in an interactive view, it helps pinpoint performance issues, unexpected calls, or anomalous events without requiring deep command‑line expertise.

Stratoshark is open source, distributed under a stable release (0.9.3) with installers for Windows and a universal macOS disk image. Its design mirrors Wireshark’s user experience, offering a proven, mature interface for system‑call analysis in cloud and container environments.