🚅Search before asking

I have searched for issues similar to this one.

🚅Description

As bcc is not a CO-RE framework of eBPF, we need to rely on other framework like libbpf, aya-rs, cilium/ebpf, which are not written in Python. On the other hand, there may be other, non-eBPF, tracing programs that run as separate processes.

🏕Solution(optional)

I think we can introduce a set of mechanisms for sub-processes as a way to achieve integration with other detectors.

Note that we have currently implemented monitor for shell command called ShMonitor and a process daemon Daemon.

🍰Detail(optional)

We still have the following to move forward:

• Designing protocols to interact with processes(Basiclly stdout)
• Implement a buffered subprocess monitor according to the protocol, mostly SubprocessMonitor
• Provide integration method, mostly SubprocessTracer class

Not sure this is beneficial or could benefit from #25.

🍰Example(optional)

See draft: #44