Skip to content

/ audit_pretty

Linux Auditing System logs pretty printer

MIT License
2 stars 1 fork
Star
Watch
master
1 branch 1 tag
Go to file
Code
Clone

Use Git or checkout with SVN using the web URL.

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
audit_pretty
 
 
.gitignore
 
 
LICENSE
 
 
MANIFEST.in
 
 
README.md
 
 
pretty.png
 
 
raw.png
 
 
setup.py
 
 

README.md

[WIP] audit-pretty

Linux Auditing System log files pretty printer.

Screenshot of raw log Screenshoot of log processed by this script

Installation

You can run script directly from repository: python3 -m audit_pretty ARGS... or install it to system directory: pip3 install audit_pretty.

Usage

You need only Python 3 for this script to work.

sudo dmesg | audit-pretty

sudo cat /var/log/audit/audit.log | audit-pretty

It works correctly with dmesg -w so you can watch live log in readable format!

sudo dmesg -w | audit-pretty

There are bunch of useful options you may want to use, check out audit-pretty -h!

Room for improvement

  • Don't use colors (--no-colors)
  • Filter by time (--since, --until)
  • Handle more than just AppArmor violations
  • Verbose option to include more info (-v, --verbose)
  • Filter message types (-e, --exclude, --only)
  • Merge repeated messages (useful for policy debugging) (--merge)

About

Linux Auditing System logs pretty printer

Topics

linux-audit linux-security security

Resources

Readme

License

MIT License

Releases

1 tags

Packages

No packages published

Languages

You can’t perform that action at this time.