Scribery/aushape

Issues

• aushape: error while loading shared libraries: libaushape.so.0: cannot open shared object file: No such file or directory

  #70 opened 6 years ago by gatimeher
  1

• undeclared symbols on make

  #71 opened 4 years ago by hueyvle
  0

• Error normalizing NETFILTER_CFG

  #69 opened 7 years ago by spbnick
  4

• Implement integration tests

  #68 opened 7 years ago by spbnick
  0

• Support building without audit normalization API

  #67 opened 7 years ago by spbnick
  0

• Docker VIRT_CONTROL vm field garbage

  #66 opened 7 years ago by spbnick
  0

• Remote audit logs

  #65 opened 7 years ago by Keysuke
  25

• Handle repeated NETFILTER_CFG records

  #62 opened 8 years ago by spbnick
  0

• Some execve events are considered invalid

  #63 opened 8 years ago by spbnick
  0

• Rename `host` field to `node` to match audit logs better

  #55 opened 8 years ago by spbnick
  1

• Implement support for output format, which can easily be forwarded to ElasticSearch

  #61 opened 8 years ago by spbnick
  1

• Mention --enable-debug configure option in README.md

  #60 opened 8 years ago by spbnick
  0

• Implement Elasticsearch mapping generation

  #58 opened 8 years ago by spbnick
  0

• Make parsed data output optional

  #57 opened 8 years ago by spbnick
  0

• Implement outputting normalized audit event data

  #56 opened 8 years ago by spbnick
  0

• Add instructions on Elasticsearch forwarding to README.md

  #53 opened 8 years ago by spbnick
  0

• Install schemas and Elasticsearch mapping

  #52 opened 8 years ago by spbnick
  0

• Implement Elasticsearch mapping

  #33 opened 8 years ago by spbnick
  0

• Consider having field value sub-fields

  #51 opened 8 years ago by spbnick
  2

• Ignore or warn about event not being trimmed to the required maximum

  #50 opened 8 years ago by spbnick
  0

• Scan the code for TODO and FIXME

  #49 opened 8 years ago by spbnick
  0

• Consider improving formatting code structure

  #24 opened 8 years ago by spbnick
  1

• Ignore EOE events

  #46 opened 8 years ago by spbnick
  0

• Implement build integration test

  #48 opened 8 years ago by spbnick
  0

• Limit event size

  #29 opened 8 years ago by spbnick
  0

• Implement reporting conversion errors in-band

  #34 opened 8 years ago by spbnick
  0

• Refactor event formatting and trimming

  #47 opened 8 years ago by spbnick
  0

• Decide on and implement consistent argument verification convention

  #40 opened 8 years ago by spbnick
  1

• Output raw representation as array of lines

  #38 opened 8 years ago by spbnick
  0

• Move raw record output to the event level

  #45 opened 8 years ago by spbnick
  0

• Consider not passing "first" argument everywhere

  #39 opened 8 years ago by spbnick
  2

• Consider standardizing on structure object creation arguments instead of va_list ones

  #44 opened 8 years ago by spbnick
  0

• Consider moving common record prologue/epilogue formatting to record.c

  #43 opened 8 years ago by spbnick
  0

• Reconsider what part of the collector stack should be checking for record type uniqueness

  #41 opened 8 years ago by spbnick
  1

• Handle repeated record types

  #32 opened 8 years ago by spbnick
  3

• Implement communicating path item number from SYSCALL record to PATH record collector

  #42 opened 8 years ago by spbnick
  0

• Note when a function expects a valid argument and fails assertion otherwise

  #37 opened 8 years ago by spbnick
  0

• Note destruction functions accept NULL or valid

  #36 opened 8 years ago by spbnick
  0

• Note validation functions accept NULL

  #35 opened 8 years ago by spbnick
  0

• Filter out "node" field from records

  #31 opened 8 years ago by spbnick
  0

• Consider having separate folding level for documents

  #26 opened 8 years ago by spbnick
  0

• Consider having separate executables for streaming and converting

  #30 opened 8 years ago by spbnick
  0

• Format descriptions of function return values appropriately

  #21 opened 8 years ago by spbnick
  0

• Make sure doxygen-generated documentation makes sense

  #20 opened 8 years ago by spbnick
  1

• Differentiate between recoverable and unrecoverable errors

  #22 opened 8 years ago by spbnick
  1

• Refactor-out common prologue and epilogue output in conv.c

  #25 opened 8 years ago by spbnick
  0

• Make sure all functions in headers have "extern" keyword

  #19 opened 8 years ago by spbnick
  0

• Find an output which can handle large documents

  #27 opened 8 years ago by spbnick
  0

• Live logging to ElasticSearch

  #28 opened 8 years ago by spbnick
  1

• Differentiate between continuous and discrete outputs

  #23 opened 8 years ago by spbnick
  0