2 Коммитов

Автор	SHA1	Сообщение	Дата
Kevin Sheldrake	b13b97ebbb	Kesheldr syscall filter ng (#38) ... * syscall filter changes * added defines * fixed auomscollect.cpp last_pid_check bug * added libxml2 include path * added syscall filtering, sysmon config and syslog output * Updated syscall filter * deleted sym link * Fixed memory leak and CPU starvation bugs * Updated following comments * Updated following taglines comments * Changed filters syscall data structure for performance and changed unordered_map tests/access.	2019-10-07 15:58:47 +01:00
Tad Glines	7b8b09d5d4	Feature 3.0 (#27) ... * Split into seperate collector and forwarder - Add NETLINK data collection - Add collector management to forwarder * Modified auomscollect.cpp so that it exits if /sbin/auditd file is created * Remove dependency on libaudit/libauparse, add rule management * Added op status reporting and fixed many bugs - Added EXECVE parse unit tests * Fix loaded rule update logic * Fix installer to properly restart/enable auoms	2019-04-30 12:06:02 -07:00