#audit #linux #parser #auditd

linux-audit-parser

Parser for Linxu Audit logs

6 releases

0.2.4 Jan 28, 2025
0.2.3 Jan 22, 2025
0.2.2 Dec 21, 2024
0.2.1 Nov 23, 2024
0.1.1 Aug 25, 2024

#668 in Data structures

Download history 2/week @ 2024-10-22 4/week @ 2024-11-05 17/week @ 2024-11-12 142/week @ 2024-11-19 17/week @ 2024-11-26 4/week @ 2024-12-03 57/week @ 2024-12-10 120/week @ 2024-12-17 7/week @ 2024-12-24 28/week @ 2024-12-31 10/week @ 2025-01-07 18/week @ 2025-01-14 182/week @ 2025-01-21 149/week @ 2025-01-28 32/week @ 2025-02-04

384 downloads per month
Used in laurel

LGPL-3.0-or-later

76KB
2K SLoC

Parser for Linux Audit ("auditd") logs

This crate provides functionality and data structures to efficiently parse Linux Audit files. It is heavily based on the parser used in Laurel.

License

GNU Lesser General Public License, version 3.0 or later

Author

Hilko Bengen <bengen@hilluzination.de>

Dependencies

~2.1–3MB
~65K SLoC