Loading...
Searching...
No Matches
security_collector.h File Reference
Security event monitoring collector. More...
#include <atomic>#include <chrono>#include <cstdint>#include <memory>#include <mutex>#include <string>#include <unordered_map>#include <vector>#include "../interfaces/metric_types_adapter.h"#include "../plugins/collector_plugin.h"
Include dependency graph for security_collector.h:
This graph shows which files directly or indirectly include this file:
Go to the source code of this file.
Classes | |
| struct | kcenon::monitoring::security_event |
| Individual security event information. More... | |
| struct | kcenon::monitoring::security_event_counts |
| Counts of security events by type. More... | |
| struct | kcenon::monitoring::security_metrics |
| Aggregated security event metrics. More... | |
| class | kcenon::monitoring::security_info_collector |
| Security event data collector using platform abstraction layer. More... | |
| class | kcenon::monitoring::security_collector |
| Security event monitoring collector. More... | |
Namespaces | |
| namespace | kcenon |
| namespace | kcenon::monitoring |
| namespace | kcenon::monitoring::platform |
Enumerations | |
| enum class | kcenon::monitoring::security_event_type { kcenon::monitoring::login_success = 1 , kcenon::monitoring::login_failure = 2 , kcenon::monitoring::logout = 3 , kcenon::monitoring::sudo_usage = 4 , kcenon::monitoring::permission_change = 5 , kcenon::monitoring::account_created = 6 , kcenon::monitoring::account_deleted = 7 , kcenon::monitoring::account_modified = 8 , kcenon::monitoring::session_start = 9 , kcenon::monitoring::session_end = 10 , kcenon::monitoring::unknown = 0 } |
| Types of security events tracked. More... | |
Functions | |
| std::string | kcenon::monitoring::security_event_type_to_string (security_event_type type) |
| Convert security_event_type to string representation. | |
Detailed Description
Security event monitoring collector.
This file provides security event monitoring for audit and compliance. Tracking security events helps detect security incidents, audit access patterns, and maintain compliance with security policies.
Platform APIs:
- Linux: /var/log/auth.log or /var/log/secure parsing
- macOS: Unified logging with security subsystem predicates
- Windows: Stub implementation (future: Windows Event Log API)
Definition in file security_collector.h.
