Description
Converts Linux auditd events into JSON through an audisp plugin for easier log processing. It is useful for administrators and security teams feeding audit events into SIEM, pipelines, or structured log storage.
Audit logs can contain sensitive commands, paths, user IDs, and security events. Protect outputs, retention, and forwarding destinations carefully.