- Fix build warning
- Improve Netlink code
- Changed to make it easier to change file path defaults.
- Added support for ARM64(aarch64)
- Change KernelInfo.cpp so _syscall defaults to true if the
/boot/config-<kernel ver> cannot be found or read.
- Increase sleep time for audit rules checks and audit pid checks to
resuce idle CPU consumption.
* Split into seperate collector and forwarder
- Add NETLINK data collection
- Add collector management to forwarder
* Modified auomscollect.cpp so that it exits if /sbin/auditd file is created
* Remove dependency on libaudit/libauparse, add rule management
* Added op status reporting and fixed many bugs
- Added EXECVE parse unit tests
* Fix loaded rule update logic
* Fix installer to properly restart/enable auoms
Tad Glines