#!/bin/bash # echo "$0 $@" > betaLinuxPerformanceTool.log ( ############################################################# # START Define vars # ############################################################# SCRIPT_VERSION=4.2.1 HITS=$2 WAIT=$3 # Test "$2" content: must have a value and must be a number. RE='^[0-9]+$' FLOAT='^[0-9]*(\.[0-9]+)?$' # Define number of seconds to capture LIMIT=$2 # Define number of MDATP processes to check ps aux | grep /opt/microsoft/mdatp/sbin/mdatp_audisp_plugin | grep -v grep > /dev/null 2>&1 if [ $? = 0 ] then NR_OF_PIDS=4 else NR_OF_PIDS=3 fi # Define main log file name MAIN_LOGFILENAME=main.txt # Define dir file name DIRNAME=betaLinuxPerformanceTool # Define source ip address when remote accessing with SSH SSH_SRC_IP=$(echo ${SSH_CLIENT} | awk -F ' ' '{print $1}') ############################################################# # END Define vars # ############################################################# ############################################################# # START Define Functions # ############################################################# get_cpuinfo () { cat /proc/cpuinfo | grep processor > $DIRNAME/cpuinfo.txt } create_dir_struct () { echo -e " *** Checking if '$DIRNAME' dir exists..." if [ -d "$DIRNAME" ] then echo -e " *** '$DIRNAME' exists. Deleting..." sudo rm -rf $DIRNAME/* echo -e " *** Done deleting old files." else echo -e " *** '$DIRNAME' does not exist. Creating..." mkdir $DIRNAME fi } check_time_param () { if ! [[ $LIMIT =~ $RE ]] then echo -e " *** Usage: ./betaLinuxPerformanceTool.sh -ps " exit 0 fi } check_time_param_long () { if [[ $HITS == 0 || $WAIT == 0 ]] then echo " *** Invalid parameter: zero is not a valid option." echo " *** Usage: ./betaLinuxPerformanceTool.sh -pl " exit 0 fi if ! [[ $HITS =~ $RE ]] then echo " *** Invalid parameter for number of samples: not a number or not an integer." echo " *** Usage: ./betaLinuxPerformanceTool.sh -pl " exit 0 fi if ! [[ $WAIT =~ $FLOAT || $WAIT =~ $RE ]] then echo " *** Invalid parameter for interval in seconds: not a number" echo " *** Usage: ./betaLinuxPerformanceTool.sh -pl " exit 0 fi if [ -z $HITS ] then echo " *** Invalid parameter for number of samples: empty" echo " *** Usage: ./betaLinuxPerformanceTool.sh -pl " exit 0 fi if [ -z $WAIT ] then echo " *** Invalid parameter for interval in seconds: empty" echo " *** Usage: ./betaLinuxPerformanceTool.sh -pl " exit 0 fi } feed_stats () { for (( i = 1; i <= $NR_OF_PIDS; i++ )) do cat $DIRNAME/pid$i.txt | awk -F ' ' '{ print $2 }' > $DIRNAME/pid$i.cpu.t SUM_CPU=$(awk '{Total=Total+$1} END{print Total}' $DIRNAME/pid${i}.cpu.t) TOTAL_CPU=$(cat $DIRNAME/pid${i}.cpu.t | wc -l) OUT_CPU=$(echo "scale=2; $SUM_CPU/$TOTAL_CPU" | bc -l) cat $DIRNAME/pid$i.txt | awk -F ' ' '{ print $3 }' > $DIRNAME/pid$i.mem.t SUM_MEM=$(awk '{Total=Total+$1} END{print Total}' $DIRNAME/pid${i}.mem.t) TOTAL_MEM=$(cat $DIRNAME/pid${i}.mem.t | wc -l) OUT_MEM=$(echo "scale=2; $SUM_MEM/$TOTAL_MEM" | bc -l) echo " Total Memory samples fetched : $TOTAL_MEM" | tee -a $DIRNAME/pid$i.txt echo " Sum of values in column for Memory: $SUM_MEM" | tee -a $DIRNAME/pid$i.txt echo " Memory Percentage Average is $OUT_MEM%" | tee -a $DIRNAME/pid$i.txt echo " Total CPU samples fetched: $TOTAL_CPU" | tee -a $DIRNAME/pid$i.txt echo " Sum of values in column for CPU: $SUM_CPU" | tee -a $DIRNAME/pid$i.txt echo " CPU Percentage Average is $OUT_CPU%" | tee -a $DIRNAME/pid$i.txt done } check_requirements () { TAR=$(which tar 2>/dev/null) SED=$(which sed 2>/dev/null) AWK=$(which awk 2>/dev/null) TOP=$(which top 2>/dev/null) GREP=$(which grep 2>/dev/null) TEE=$(which tee 2>/dev/null) echo " *** Checking base requirements..." if [[ -z $TAR || -z $SED || -z $AWK || -z $TOP || -z $GREP || -z $TEE ]] then echo -e " *** Base requirements check failed." if [ -z $TAR ] then echo " *** 'tar' is not installed." echo " *** Please install 'tar'." fi if [ -z $SED ] then echo " *** 'sed' is not installed." echo " *** Please install 'sed'." fi if [ -z $AWK ] then echo " *** 'awk' is not installed." echo " *** Please install 'sed'." fi if [ -z $TOP ] then echo " *** 'top' is not installed." echo " *** Please install 'sed'." fi if [ -z $GREP ] then echo " *** 'grep' is not installed." echo " *** Please install 'sed'." fi if [ -z $TEE ] then echo " *** 'tee' is not installed." echo " *** Please install 'sed'." fi exit 0 else echo -e " *** Base requirements met." fi } collect_info () { free -h > $DIRNAME/free.txt cat /proc/cpuinfo | grep processor > $DIRNAME/cpuinfo.txt df -h > $DIRNAME/df.txt ps -ef > $DIRNAME/psef.txt mdatp health --details features > $DIRNAME/feature_details.txt } check_mdatp_running () { echo -e " *** Checking if 'mdatp' is installed..." which mdatp > /dev/null 2>&1 if [ $? != 0 ] then echo -e " *** Cannot find 'mdatp'." echo -e " *** Please confirm 'mdatp' is installed on your system." exit 0 else echo -e " *** 'mdatp' is installed." fi echo -e " *** Checking if 'mdatp' service is running..." systemctl list-units --type=service \ --state=running | grep mdatp.service | grep "loaded active running" > /dev/null 2>&1 if [ $? != 0 ] then echo -e " *** 'mdatp' service is not running." echo -e " *** Please start 'mdatp' service." exit 0 else echo -e " *** 'mdatp' service is running." fi echo -e " *** Checking if 'auditd' is running..." systemctl list-units --type=service \ --state=running | grep auditd.service | grep "loaded active running" > /dev/null 2>&1 if [ $? != 0 ] then echo -e " *** 'auditd' is not running on your system." echo -e " *** Please start 'auditd'." exit 0 else echo -e " *** 'auditd' service is running." fi } loop() { for (( i = 1; i <= $LIMIT; i++ )) do echo $(date) echo -e " PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND" top -cbn1 -w512 | grep -e mdatp_audisp_pl -e wdavdaemon | grep -v grep # (processing time)+(wait time)=1 <=> 0.2+0.8=1 second sleep 0.8 done } loop_long() { for (( i = 1; i <= $HITS; i++ )) do echo $(date) echo -e " PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND" top -cbn1 -w512 | grep -e mdatp_audisp_pl -e wdavdaemon | grep -v grep sleep $WAIT done } count() { INIT=1 while [ $INIT -lt $LIMIT ] do echo -ne " $INIT/$LIMIT \033[0K\r" sleep 1 : $((INIT++)) done } feed_data () { ps aux | grep /opt/microsoft/mdatp/sbin/mdatp_audisp_plugin | grep -v grep > /dev/null 2>&1 if [ $? = 0 ] then PID1=$(cat $DIRNAME/$MAIN_LOGFILENAME | head -n6 | awk -F ' ' '{ print $1 }' | tail -n +3 | sed '1q;d') PID2=$(cat $DIRNAME/$MAIN_LOGFILENAME | head -n6 | awk -F ' ' '{ print $1 }' | tail -n +3 | sed '2q;d') PID3=$(cat $DIRNAME/$MAIN_LOGFILENAME | head -n6 | awk -F ' ' '{ print $1 }' | tail -n +3 | sed '3q;d') PID4=$(cat $DIRNAME/$MAIN_LOGFILENAME | head -n6 | awk -F ' ' '{ print $1 }' | tail -n +3 | sed '4q;d') else PID1=$(cat $DIRNAME/$MAIN_LOGFILENAME | head -n6 | awk -F ' ' '{ print $1 }' | tail -n +3 | sed '1q;d') PID2=$(cat $DIRNAME/$MAIN_LOGFILENAME | head -n6 | awk -F ' ' '{ print $1 }' | tail -n +3 | sed '2q;d') PID3=$(cat $DIRNAME/$MAIN_LOGFILENAME | head -n6 | awk -F ' ' '{ print $1 }' | tail -n +3 | sed '3q;d') fi echo -e " *** Creating log files for analysis..." ps aux | grep /opt/microsoft/mdatp/sbin/mdatp_audisp_plugin | grep -v grep > /dev/null 2>&1 if [ $? = 0 ] then cat $DIRNAME/$MAIN_LOGFILENAME | awk -F ' ' '{ print $1, $9, $10, $12, $13 }' | grep $PID1 >> $DIRNAME/pid1.txt cat $DIRNAME/$MAIN_LOGFILENAME | awk -F ' ' '{ print $1, $9, $10, $12, $13 }' | grep $PID2 >> $DIRNAME/pid2.txt cat $DIRNAME/$MAIN_LOGFILENAME | awk -F ' ' '{ print $1, $9, $10, $12, $13 }' | grep $PID3 >> $DIRNAME/pid3.txt cat $DIRNAME/$MAIN_LOGFILENAME | awk -F ' ' '{ print $1, $9, $10, $12, $13 }' | grep $PID4 >> $DIRNAME/pid4.txt else cat $DIRNAME/$MAIN_LOGFILENAME | awk -F ' ' '{ print $1, $9, $10, $12, $13 }' | grep $PID1 >> $DIRNAME/pid1.txt cat $DIRNAME/$MAIN_LOGFILENAME | awk -F ' ' '{ print $1, $9, $10, $12, $13 }' | grep $PID2 >> $DIRNAME/pid2.txt cat $DIRNAME/$MAIN_LOGFILENAME | awk -F ' ' '{ print $1, $9, $10, $12, $13 }' | grep $PID3 >> $DIRNAME/pid3.txt fi } create_plotting_files () { echo " *** Creating plotting files..." # Create X axis # for (( i = 1; i <= $LIMIT; i++ )) do echo $i >> $DIRNAME/merge.t done # Merging X with Y # for (( i = 1; i <= $NR_OF_PIDS; i++ )) do paste $DIRNAME/merge.t $DIRNAME/pid$i.cpu.t > $DIRNAME/pid$i.cpu.plt paste $DIRNAME/merge.t $DIRNAME/pid$i.mem.t > $DIRNAME/pid$i.mem.plt done # Rename plotting files from pid.plt, to plt file with pid name # ps aux | grep /opt/microsoft/mdatp/sbin/mdatp_audisp_plugin | grep -v grep > /dev/null 2>&1 if [ $? = 0 ] then mv $DIRNAME/pid1.cpu.plt $DIRNAME/1"_"$PID1_NAME.cpu.plt mv $DIRNAME/pid2.cpu.plt $DIRNAME/2"_"$PID2_NAME.cpu.plt mv $DIRNAME/pid3.cpu.plt $DIRNAME/3"_"$PID3_NAME.cpu.plt mv $DIRNAME/pid4.cpu.plt $DIRNAME/4"_"$PID4_NAME.cpu.plt mv $DIRNAME/pid1.mem.plt $DIRNAME/1"_"$PID1_NAME.mem.plt mv $DIRNAME/pid2.mem.plt $DIRNAME/2"_"$PID2_NAME.mem.plt mv $DIRNAME/pid3.mem.plt $DIRNAME/3"_"$PID3_NAME.mem.plt mv $DIRNAME/pid4.mem.plt $DIRNAME/4"_"$PID4_NAME.mem.plt else mv $DIRNAME/pid1.cpu.plt $DIRNAME/1"_"$PID1_NAME.cpu.plt mv $DIRNAME/pid2.cpu.plt $DIRNAME/2"_"$PID2_NAME.cpu.plt mv $DIRNAME/pid3.cpu.plt $DIRNAME/3"_"$PID3_NAME.cpu.plt mv $DIRNAME/pid1.mem.plt $DIRNAME/1"_"$PID1_NAME.mem.plt mv $DIRNAME/pid2.mem.plt $DIRNAME/2"_"$PID2_NAME.mem.plt mv $DIRNAME/pid3.mem.plt $DIRNAME/3"_"$PID3_NAME.mem.plt fi } create_plot_graph () { # Declare function vars # NR_CPU=$(cat ${DIRNAME}/cpuinfo.txt | wc -l) PLOT_DATE=$(date) HOSTNAME=$(hostnamectl | grep "Static hostname" | awk -F ':' '{ print $2 }') OS=$(hostnamectl | grep "Operating System" | awk -F ':' '{ print $2 }') RTP_TEST=$(mdatp health | grep "real_time_protection_enabled" | awk -F ':' '{ print $2 }') PASSV_M_TEST=$(mdatp health | grep passive_mode | awk -F ':' '{ print $2 }') APP_VERSION=$(mdatp health | grep app_version | awk -F ':' '{ print $2 }' | tail -c +3 | head -c -2) # Create plot.cpu.plt script # echo "set terminal wxt size 1800,600" >> $DIRNAME/cpu_plot.plt echo "set title 'CPU Load for MDATP Processes (Max. CPU% = $NR_CPU"00%") - $PLOT_DATE'" >> $DIRNAME/cpu_plot.plt echo "set xlabel 'seconds'" >> $DIRNAME/cpu_plot.plt echo "set ylabel 'CPU %'" >> $DIRNAME/cpu_plot.plt echo "set key noenhanced" >> $DIRNAME/cpu_plot.plt echo "set key right top outside" >> $DIRNAME/cpu_plot.plt echo "set label ' ------ System information ------' at graph 1, graph 0.75" >> $DIRNAME/cpu_plot.plt echo "set label ' $PLOT_DATE' at graph 1, graph 0.70" >> $DIRNAME/cpu_plot.plt echo "set label ' Hostname: $HOSTNAME' at graph 1, graph 0.63" >> $DIRNAME/cpu_plot.plt echo "set label ' OS: $OS' at graph 1, graph 0.58" >> $DIRNAME/cpu_plot.plt echo "set label ' Real Time Protection: $RTP_TEST' at graph 1, graph 0.53" >> $DIRNAME/cpu_plot.plt echo "set label ' Passive Mode: $PASSV_M_TEST' at graph 1, graph 0.48" >> $DIRNAME/cpu_plot.plt echo "set label ' App. Version: $APP_VERSION' at graph 1, graph 0.43" >> $DIRNAME/cpu_plot.plt echo "plot 'graphs/1_$PID1_NAME.cpu.plt' with linespoints title '$PID1_NAME','graphs/2_$PID2_NAME.cpu.plt' with linespoints title '$PID2_NAME','graphs/3_$PID3_NAME.cpu.plt' with linespoints title '$PID3_NAME','graphs/4_$PID4_NAME.cpu.plt' with linespoints title '$PID4_NAME'" >> $DIRNAME/cpu_plot.plt # Create plot.mem.plt script # echo "set terminal wxt size 1800,600" >> $DIRNAME/mem_plot.plt echo "set title 'Memory Load for MDATP Processes'" >> $DIRNAME/mem_plot.plt echo "set xlabel 'seconds'" >> $DIRNAME/mem_plot.plt echo "set ylabel 'Memory %'" >> $DIRNAME/mem_plot.plt echo "set key noenhanced" >> $DIRNAME/mem_plot.plt echo "set key right top outside" >> $DIRNAME/mem_plot.plt echo "set label ' ------ System information ------' at graph 1, graph 0.75" >> $DIRNAME/mem_plot.plt echo "set label ' $PLOT_DATE' at graph 1, graph 0.70" >> $DIRNAME/mem_plot.plt echo "set label ' Hostname: $HOSTNAME' at graph 1, graph 0.63" >> $DIRNAME/mem_plot.plt echo "set label ' OS: $OS' at graph 1, graph 0.58" >> $DIRNAME/mem_plot.plt echo "set label ' Real Time Protection: $RTP_TEST' at graph 1, graph 0.53" >> $DIRNAME/mem_plot.plt echo "set label ' Passive Mode: $PASSV_M_TEST' at graph 1, graph 0.48" >> $DIRNAME/mem_plot.plt echo "set label ' App. Version: $APP_VERSION' at graph 1, graph 0.43" >> $DIRNAME/mem_plot.plt echo "plot 'graphs/1_$PID1_NAME.mem.plt' with linespoints title '$PID1_NAME','graphs/2_$PID2_NAME.mem.plt' with linespoints title '$PID2_NAME', 'graphs/3_$PID3_NAME.mem.plt' with linespoints title '$PID3_NAME','graphs/4_$PID4_NAME.mem.plt' with linespoints title '$PID4_NAME'" >> $DIRNAME/mem_plot.plt } create_plot_graph_long () { # Declare function vars # NR_CPU=$(cat ${DIRNAME}/cpuinfo.txt | wc -l) PLOT_DATE=$(date) HOSTNAME=$(hostnamectl | grep "Static hostname" | awk -F ':' '{ print $2 }') OS=$(hostnamectl | grep "Operating System" | awk -F ':' '{ print $2 }') RTP_TEST=$(mdatp health | grep "real_time_protection_enabled" | awk -F ':' '{ print $2 }') PASSV_M_TEST=$(mdatp health | grep passive_mode | awk -F ':' '{ print $2 }') APP_VERSION=$(mdatp health | grep app_version | awk -F ':' '{ print $2 }' | tail -c +3 | head -c -2) # Create mem.cpu.plt script for long running flag # echo "set terminal wxt size 1800,600" >> $DIRNAME/cpu_plot.plt echo "set title 'CPU Load for MDATP Processes (Max. CPU% = $NR_CPU"00%")'" >> $DIRNAME/cpu_plot.plt echo "set xlabel 'Samples in $WAIT second intervals'" >> $DIRNAME/cpu_plot.plt echo "set ylabel 'CPU %'" >> $DIRNAME/cpu_plot.plt echo "set key noenhanced" >> $DIRNAME/cpu_plot.plt echo "set key right top outside" >> $DIRNAME/cpu_plot.plt echo "set label ' ------ System information ------' at graph 1, graph 0.75" >> $DIRNAME/cpu_plot.plt echo "set label ' $PLOT_DATE' at graph 1, graph 0.70" >> $DIRNAME/cpu_plot.plt echo "set label ' OS: $OS' at graph 1, graph 0.63" >> $DIRNAME/cpu_plot.plt echo "set label ' Real Time Protection: $RTP_TEST' at graph 1, graph 0.58" >> $DIRNAME/cpu_plot.plt echo "set label ' Passive Mode: $PASSV_M_TEST' at graph 1, graph 0.53" >> $DIRNAME/cpu_plot.plt echo "set label ' App. Version: $APP_VERSION' at graph 1, graph 0.48" >> $DIRNAME/cpu_plot.plt echo "plot 'graphs/1_$PID1_NAME.cpu.plt' with linespoints title '$PID1_NAME','graphs/2_$PID2_NAME.cpu.plt' with linespoints title '$PID2_NAME', 'graphs/3_$PID3_NAME.cpu.plt' with linespoints title '$PID3_NAME','graphs/4_$PID4_NAME.cpu.plt' with linespoints title '$PID4_NAME'" >> $DIRNAME/cpu_plot.plt # Create plot.mem.plt script for long running flag # echo "set terminal wxt size 1800,600" >> $DIRNAME/mem_plot.plt echo "set title 'Memory Load for MDATP Processes'" >> $DIRNAME/mem_plot.plt echo "set xlabel 'Samples in $WAIT second intervals'" >> $DIRNAME/mem_plot.plt echo "set ylabel 'Memory %'" >> $DIRNAME/mem_plot.plt echo "set key noenhanced" >> $DIRNAME/mem_plot.plt echo "set key right top outside" >> $DIRNAME/mem_plot.plt echo "set label ' ------ System information ------' at graph 1, graph 0.75" >> $DIRNAME/mem_plot.plt echo "set label ' $PLOT_DATE' at graph 1, graph 0.70" >> $DIRNAME/mem_plot.plt echo "set label ' OS: $OS' at graph 1, graph 0.63" >> $DIRNAME/mem_plot.plt echo "set label ' Real Time Protection: $RTP_TEST' at graph 1, graph 0.58" >> $DIRNAME/mem_plot.plt echo "set label ' Passive Mode: $PASSV_M_TEST' at graph 1, graph 0.53" >> $DIRNAME/mem_plot.plt echo "set label ' App. Version: $APP_VERSION' at graph 1, graph 0.48" >> $DIRNAME/cpu_plot.plt echo "plot 'graphs/1_$PID1_NAME.mem.plt' with linespoints title '$PID1_NAME','graphs/2_$PID2_NAME.mem.plt' with linespoints title '$PID2_NAME', 'graphs/3_$PID3_NAME.mem.plt' with linespoints title '$PID3_NAME','graphs/4_$PID4_NAME.mem.plt' with linespoints title '$PID4_NAME'" >> $DIRNAME/mem_plot.plt } rename_pid_to_process () { # Renaming PID files to process name # ps aux | grep /opt/microsoft/mdatp/sbin/mdatp_audisp_plugin | grep -v grep > /dev/null 2>&1 if [ $? = 0 ] then PID1_NAME_TMP=$(head -n 1 ${DIRNAME}/pid1.txt | awk -F ' ' '{print $4, $5}' | awk -F '/' '{print $6}' | sed 's/ *$//') PID1_NAME=$(tr -s ' ' '_' <<< ${PID1_NAME_TMP}) mv $DIRNAME/pid1.txt $DIRNAME/1"_"$PID1_NAME.log PID2_NAME_TMP=$(head -n 1 ${DIRNAME}/pid2.txt | awk -F ' ' '{print $4, $5}' | awk -F '/' '{print $6}' | sed 's/ *$//') PID2_NAME=$(tr -s ' ' '_' <<< ${PID2_NAME_TMP}) mv $DIRNAME/pid2.txt $DIRNAME/2"_"$PID2_NAME.log PID3_NAME_TMP=$(head -n 1 ${DIRNAME}/pid3.txt | awk -F ' ' '{print $4, $5}' | awk -F '/' '{print $6}' | sed 's/ *$//') PID3_NAME=$(tr -s ' ' '_' <<< ${PID3_NAME_TMP}) mv $DIRNAME/pid3.txt $DIRNAME/3"_"$PID3_NAME.log PID4_NAME_TMP=$(head -n 1 ${DIRNAME}/pid4.txt | awk -F ' ' '{print $4, $5}' | awk -F '/' '{print $6}' | sed 's/ *$//') PID4_NAME=$(tr -s ' ' '_' <<< ${PID4_NAME_TMP}) mv $DIRNAME/pid4.txt $DIRNAME/4"_"$PID4_NAME.log else PID1_NAME_TMP=$(head -n 1 ${DIRNAME}/pid1.txt | awk -F ' ' '{print $4, $5}' | awk -F '/' '{print $6}' | sed 's/ *$//') PID1_NAME=$(tr -s ' ' '_' <<< ${PID1_NAME_TMP}) mv $DIRNAME/pid1.txt $DIRNAME/1"_"$PID1_NAME.log PID2_NAME_TMP=$(head -n 1 ${DIRNAME}/pid2.txt | awk -F ' ' '{print $4, $5}' | awk -F '/' '{print $6}' | sed 's/ *$//') PID2_NAME=$(tr -s ' ' '_' <<< ${PID2_NAME_TMP}) mv $DIRNAME/pid2.txt $DIRNAME/2"_"$PID2_NAME.log PID3_NAME_TMP=$(head -n 1 ${DIRNAME}/pid3.txt | awk -F ' ' '{print $4, $5}' | awk -F '/' '{print $6}' | sed 's/ *$//') PID3_NAME=$(tr -s ' ' '_' <<< ${PID3_NAME_TMP}) mv $DIRNAME/pid3.txt $DIRNAME/3"_"$PID3_NAME.log fi } generate_report () { echo -e " *** Creating 'report.txt' file..." for (( i = 1; i <= $NR_OF_PIDS; i++ )) do ls $DIRNAME/$i"_"*.log >> $DIRNAME/report.txt tail -n6 $DIRNAME/$i"_"*.log >> $DIRNAME/report.txt echo "" >> $DIRNAME/report.txt done } check_rtp_enabled () { mdatp health --field real_time_protection_enabled > /dev/null 2>&1 if [ $? != 0 ] then echo -e " *** Real Time Protection is not enabled." echo -e " *** Please enable RTP and re-run script." exit 0 else echo -e " *** Real Time Protection is enabled. [OK]" fi } tidy_up () { mkdir $DIRNAME/plot $DIRNAME/report $DIRNAME/log $DIRNAME/main $DIRNAME/raw mkdir $DIRNAME/plot/graphs mv $DIRNAME/main.txt $DIRNAME/main mv $DIRNAME/*.txt $DIRNAME/report mv $DIRNAME/*.plt $DIRNAME/plot mv $DIRNAME/*.log $DIRNAME/log mv $DIRNAME/*.t $DIRNAME/raw mv $DIRNAME/plot/*.plt $DIRNAME/plot/graphs mv $DIRNAME/plot/graphs/cpu_plot.plt $DIRNAME/plot/graphs/mem_plot.plt $DIRNAME/plot/ } tidy_up_long () { mkdir $DIRNAME/plot $DIRNAME/report $DIRNAME/log $DIRNAME/main $DIRNAME/raw mkdir $DIRNAME/plot/graphs mv $DIRNAME/main.txt $DIRNAME/main mv $DIRNAME/*.txt $DIRNAME/report mv $DIRNAME/*.plt $DIRNAME/plot mv $DIRNAME/*.log $DIRNAME/log mv $DIRNAME/*.t $DIRNAME/raw mv $DIRNAME/plot/*.plt $DIRNAME/plot/graphs mv $DIRNAME/plot/graphs/cpu_plot.plt $DIRNAME/plot/graphs/mem_plot.plt $DIRNAME/plot/ } clean_house () { rm -rf $DIRNAME/log $DIRNAME/main $DIRNAME/raw rm -rf $DIRNAME/report/cpuinfo.txt } package_and_compress () { echo -e " *** Packaging & compressing '$DIRNAME'... " DATE_Z=$(date +%d.%m.%Y_%HH%MM%Ss) PACKAGE_NAME=$DIRNAME"-"$DATE_Z.tar sudo tar -cvf $PACKAGE_NAME $DIRNAME > /dev/null 2>&1 echo -e " *** Done. " } append_log_file () { sudo tar -rvf $PACKAGE_NAME betaLinuxPerformanceTool.log } append_pid_files () { if [ -f /tmp/betaLinuxPerformanceTool_start-$DATE_START.pid ] then cp /tmp/betaLinuxPerformanceTool_start-$DATE_START.pid . sudo tar -rvf $PACKAGE_NAME betaLinuxPerformanceTool_start-$DATE_START.pid fi if [ -f /tmp/betaLinuxPerformanceTool_stop-$DATE_STOP.pid ] then cp /tmp/betaLinuxPerformanceTool_stop-$DATE_STOP.pid . sudo tar -rvf $PACKAGE_NAME betaLinuxPerformanceTool_stop-$DATE_STOP.pid fi } long_run () { for (( i = 1; i <= $HITS; i++ )) do echo $(date) echo -e " PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND" top -cbn1 -w512 | grep -e mdatp_audisp_pl -e wdavdaemon | grep -v grep sleep $WAIT done } echo_loop () { echo " *** Collecting data for $LIMIT seconds..." } echo_loop_long () { echo " *** Collecting $HITS samples in $WAIT second intervals" } get_pid_init () { DATE_START=$(date +%d.%m.%Y_%HH%MM%Ss) rm -rf /tmp/betaLinuxPerformanceTool* bash -c 'echo $PPID' > /tmp/betaLinuxPerformanceTool_start-$DATE_START.pid } get_pid_stop () { DATE_STOP=$(date +%d.%m.%Y_%HH%MM%Ss) cp /tmp/betaLinuxPerformanceTool_start-$DATE_START.pid /tmp/betaLinuxPerformanceTool_stop-$DATE_STOP.pid } disclaimer () { if ! [ -f .consent.txt ] then echo "********************************** DISCLAIMER ***************************************************" echo "This sample script is not supported under any Microsoft standard support program or service." echo "The sample script is provided “AS IS” without warranty of any kind. Microsoft further disclaims" echo "all implied warranties including, without limitation, any implied warranties of merchantability" echo "or of fitness for a particular purpose. The entire risk arising out of the use or performance of" echo "the sample scripts and documentation remains with you. In no event shall Microsoft, its authors," echo "or anyone else involved in the creation, production, or delivery of the scripts be liable for any" echo "damages whatsoever (including, without limitation, damages for loss of business profits, business" echo "interruption, loss of business information, or other pecuniary loss) arising out of the use of or" echo "inability to use the sample scripts or documentation, even if Microsoft has been advised of the " echo "possibility of such damages." echo "*************************************************************************************************" echo "Do you agree with running the script after reading the above disclaimer? [y]Yes [n]No" read consent if [ ! $consent == "y" ] then exit 0 fi touch .consent.txt fi } calc () { hour_minute () { read -p " *** How long do you want to capture for? (hours): " CAPTURE_PERIOD if ! [[ $CAPTURE_PERIOD =~ ^[0-9]+$ ]] then echo " *** Invalid parameter. Re-run script and try again." exit 0 fi echo " > Capture period will be $CAPTURE_PERIOD hours." read -p " *** What will be your capture interval? (minutes): " CAPTURE_INTERVAL if ! [[ $CAPTURE_INTERVAL =~ ^[0-9]+$ ]] then echo " *** Invalid parameter. Re-run script and try again." exit 0 fi echo " > Capture interval will be $CAPTURE_INTERVAL minutes." PARAM1_UP=$(echo "scale=0; ${CAPTURE_PERIOD}*3600" | bc -l) #echo $PARAM1_UP PARAM1_DWN=$(echo "scale=0; ${CAPTURE_INTERVAL}*60" | bc -l) #echo $PARAM1_DWN PARAM1=$(echo "scale=0; $PARAM1_UP/$PARAM1_DWN" | bc -l) #echo $PARAM1 echo " *** For a $CAPTURE_PERIOD hours capture in $CAPTURE_INTERVAL minutes interval, this is your command: './betaLinuxPerformanceTool.sh -pl $PARAM1 $PARAM1_DWN'" echo " *** Use 'nohup ./betaLinuxPerformanceTool.sh -pl $PARAM1 $PARAM1_DWN &' to be able to disconnect your remote session and keep capture going" } minute_second () { read -p " *** How long do you want to capture for? (minutes): " CAPTURE_PERIOD if ! [[ $CAPTURE_PERIOD =~ ^[0-9]+$ ]] then echo " *** Invalid parameter. Re-run script and try again." exit 0 fi echo " > Capture period will be $CAPTURE_PERIOD minutes." read -p " *** What will be your capture interval? (seconds): " CAPTURE_INTERVAL if ! [[ $CAPTURE_INTERVAL =~ ^[0-9]*(\.[0-9]+)?$ ]] then echo " *** Invalid parameter. Re-run script and try again." exit 0 fi echo " > Capture interval will be $CAPTURE_INTERVAL seconds." PARAM1_UP=$(echo "scale=1; ${CAPTURE_PERIOD}*60" | bc -l) PARAM1_DWN=${CAPTURE_INTERVAL} PARAM1=$(echo "scale=0; $PARAM1_UP/$PARAM1_DWN" | bc -l) echo " *** For a $CAPTURE_PERIOD minutes capture in $CAPTURE_INTERVAL seconds interval, this is your command: './betaLinuxPerformanceTool.sh -pl $PARAM1 $PARAM1_DWN'" echo " *** Use 'nohup ./betaLinuxPerformanceTool.sh -pl $PARAM1 $PARAM1_DWN &' to be able to disconnect your remote session and keep capture going" } hour_second () { read -p " *** How long do you want to capture for? (hours): " CAPTURE_PERIOD if ! [[ $CAPTURE_PERIOD =~ ^[0-9]+$ ]] then echo " *** Invalid parameter. Re-run script and try again." exit 0 fi echo " > Capture period will be $CAPTURE_PERIOD hours." read -p " *** What will be your capture interval? (seconds): " CAPTURE_INTERVAL echo " > Capture interval will be $CAPTURE_INTERVAL seconds." if ! [[ $CAPTURE_INTERVAL =~ ^[0-9]+$ ]] then echo " *** Invalid parameter. Re-run script and try again." exit 0 fi PARAM1_UP=$(echo "scale=1; ${CAPTURE_PERIOD}*3600" | bc -l) PARAM1_DWN=${CAPTURE_INTERVAL} PARAM1=$(echo "scale=0; $PARAM1_UP/$PARAM1_DWN" | bc -l) echo " *** For a $CAPTURE_PERIOD hours capture in $CAPTURE_INTERVAL seconds interval, this is your command: './betaLinuxPerformanceTool.sh -pl $PARAM1 $PARAM1_DWN'" echo " *** Use 'nohup ./betaLinuxPerformanceTool.sh -pl $PARAM1 $PARAM1_DWN &' to be able to disconnect your remote session and keep capture going" } echo " *** Pick 1, 2 or 3, according to time format to use:" select option in hour-minute minute-second hour-second do if [ $option = hour-minute ] then hour_minute fi if [ $option = minute-second ] then minute_second fi if [ $option = hour-second ] then hour_second fi exit done } header_linux () { echo " ---------------- $(date) -----------------" echo " ----------- Running betaLinuxPerformanceTool (v$SCRIPT_VERSION) -----------" } ############################################################# # END Define Functions # ############################################################# case $1 in -ps) disclaimer header_linux check_time_param check_mdatp_running check_requirements create_dir_struct collect_info get_cpuinfo echo_loop loop > $DIRNAME/$MAIN_LOGFILENAME | count feed_data feed_stats > /dev/null 2>&1 rename_pid_to_process create_plotting_files create_plot_graph generate_report tidy_up clean_house package_and_compress append_log_file ;; -pl) disclaimer get_pid_init header_linux check_time_param_long check_mdatp_running check_requirements create_dir_struct collect_info get_cpuinfo echo_loop_long loop_long > $DIRNAME/$MAIN_LOGFILENAME feed_data feed_stats > /dev/null 2>&1 rename_pid_to_process create_plotting_files create_plot_graph_long generate_report tidy_up_long clean_house package_and_compress append_log_file get_pid_stop append_pid_files ;; -m) calc ;; -d) disclaimer ;; -h) echo " ======================================= beta Xplat Performance Tool ===========================================" echo " Usage:./betaLinuxPerformanceTool.sh -ps , performance short-mode." echo " ./betaLinuxPerformanceTool.sh -pl , performance long-mode." echo " Can be used with 'nohup' and sent to background [&] in long run captures, when remote " echo " sessions need to be disconnected." echo " ./betaLinuxPerformanceTool.sh -m, calculator for time parameters for '-pl' option." echo "" echo " Note on '-pl' parameters:" echo " - sampling interval: ( 0 < [int|float])" echo " - nr. of samples: ( 0 < [int])" echo " ===============================================================================================================" ;; *) echo " *** Invalid parameter. Please check script usage with '-h' option." ;; esac # # EOF # ) 2>&1 | tee -a betaLinuxPerformanceTool.log