Skip to content
/ sentic-agent Public

The invisible, crash-safe observability agent for Linux. Built in Rust & eBPF. Features zero-instrumentation tracing, atomic local buffering (redb), and mTLS security

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

kevalabs/sentic-agent

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
crates
crates
 
 
docs
docs
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

sentic agent

Build Status License Rust Platform

The Invisible Observer for Critical Infrastructure.

sentic agent is a high-performance, strictly typed telemetry collector designed for the sentic observability platform. Built entirely in Rust, it leverages eBPF (Extended Berkeley Packet Filter) to map service topologies and capture golden signals directly from the Linux kernel—without requiring application instrumentation or sidecars.

Designed for banking and high-compliance environments, the agent follows a "Store-and-Forward" architecture. It treats data integrity as a first-class citizen, ensuring that no log or trace is lost, even during network failures or power outages.

🚀 Key Features

  • Zero-Overhead Tracing: Uses aya to hook into kernel tracepoints (kprobes/uprobes), capturing TCP flows, process lifecycles, and HTTP latency with negligible CPU impact.
  • Crash-Safe Buffering: Implements a durable Write-Ahead Log (WAL) using Redb. Data is persisted to disk atomically before transmission, guaranteeing At-Least-Once delivery.
  • Bank-Grade Security: Enforces Mutual TLS (mTLS) for all communications. The agent cannot talk to the Brain without a valid certificate, and the Brain cannot command the Agent without one.
  • Resource Efficient: Single static binary (< 15MB). Capped memory usage. No Garbage Collection pauses.
  • Universal Compatibility: Runs on bare metal, VMs, or inside Containers. Supports legacy kernels (via fallback) and modern kernels (via CO-RE).

🏗️ Architecture

The agent operates as a "Dumb, Durable Courier." It does not parse or filter data at the edge; it captures raw events, seals them in a durable envelope, and ships them to the sentic brain for AI-driven analysis.

graph LR
    K[Linux Kernel] -- eBPF (aya) --> C(collector loop)
    C -- Raw Bytes --> B[(redb local buffer)]
    B -- Batch Read --> T(gRPC transport)
    T -- mTLS Stream --> S[sentic server]
Loading

🛠️ Quick Start

Prerequisites

  • Linux Kernel 5.4+ (Recommended for eBPF features)

  • SystemD

Installation (Community Edition)

You can install the agent directly from our public repository:

```bash
# 1. Download and run the install script
curl -sfL [https://raw.githubusercontent.com/kevalabs/sentic-agent/main/install.sh](https://raw.githubusercontent.com/kevalabs/sentic-agent/main/install.sh) | sudo bash

# 2. Configure the upstream Brain
sudo sentic-agent config --server "https://your-sentic-server:8080"

# 3. Start the service
sudo systemctl start sentic-agent

🤝 Contributing

sentic agent is open source (Apache 2.0). We welcome contributions from the community, especially in eBPF probe development.

Please read CONTRIBUTING.md for build instructions and our SECURITY.md for vulnerability reporting.

Built with ❤️ by kevalabs • ideate.build.evolve()

About

The invisible, crash-safe observability agent for Linux. Built in Rust & eBPF. Features zero-instrumentation tracing, atomic local buffering (redb), and mTLS security

Topics

linux agent rust monitoring ebpf observability redb

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages