Counts of security events by type. More...

#include <security_collector.h>

Collaboration diagram for kcenon::monitoring::security_event_counts:

Public Member Functions
uint64_t	get_count (security_event_type type) const

void	increment (security_event_type type)

uint64_t	total () const

Public Attributes
uint64_t	login_success {0}
	Successful login count.

uint64_t	login_failure {0}
	Failed login count.

uint64_t	logout {0}
	Logout count.

uint64_t	sudo_usage {0}
	Sudo/privilege escalation count.

uint64_t	permission_change {0}
	Permission change count.

uint64_t	account_created {0}
	Account creation count.

uint64_t	account_deleted {0}
	Account deletion count.

uint64_t	account_modified {0}
	Account modification count.

uint64_t	unknown {0}
	Unknown event count.

Detailed Description

Counts of security events by type.

Definition at line 92 of file security_collector.h.

Member Function Documentation

◆ get_count()

uint64_t kcenon::monitoring::security_event_counts::get_count ( security_event_type type ) const

inline

Get count for a specific event type

Parameters

type	The event type

Returns: Count of events of that type

Definition at line 108 of file security_collector.h.

                                                       {
        switch (type) {
            case security_event_type::login_success: return login_success;
            case security_event_type::login_failure: return login_failure;
            case security_event_type::logout: return logout;
            case security_event_type::sudo_usage: return sudo_usage;
            case security_event_type::permission_change: return permission_change;
            case security_event_type::account_created: return account_created;
            case security_event_type::account_deleted: return account_deleted;
            case security_event_type::account_modified: return account_modified;
            default: return unknown;
        }
    }

References account_created, kcenon::monitoring::account_created, account_deleted, kcenon::monitoring::account_deleted, account_modified, kcenon::monitoring::account_modified, login_failure, kcenon::monitoring::login_failure, login_success, kcenon::monitoring::login_success, logout, kcenon::monitoring::logout, permission_change, kcenon::monitoring::permission_change, sudo_usage, kcenon::monitoring::sudo_usage, and unknown.

◆ increment()

void kcenon::monitoring::security_event_counts::increment ( security_event_type type )

inline

Increment count for a specific event type

Parameters

type	The event type to increment

Definition at line 126 of file security_collector.h.

                                             {
        switch (type) {
            case security_event_type::login_success: ++login_success; break;
            case security_event_type::login_failure: ++login_failure; break;
            case security_event_type::logout: ++logout; break;
            case security_event_type::sudo_usage: ++sudo_usage; break;
            case security_event_type::permission_change: ++permission_change; break;
            case security_event_type::account_created: ++account_created; break;
            case security_event_type::account_deleted: ++account_deleted; break;
            case security_event_type::account_modified: ++account_modified; break;
            default: ++unknown; break;
        }
    }

References account_created, kcenon::monitoring::account_created, account_deleted, kcenon::monitoring::account_deleted, account_modified, kcenon::monitoring::account_modified, login_failure, kcenon::monitoring::login_failure, login_success, kcenon::monitoring::login_success, logout, kcenon::monitoring::logout, permission_change, kcenon::monitoring::permission_change, sudo_usage, kcenon::monitoring::sudo_usage, and unknown.

◆ total()

uint64_t kcenon::monitoring::security_event_counts::total ( ) const

inline

Get total event count

Returns: Total number of events across all types

Definition at line 144 of file security_collector.h.

                           {
        return login_success + login_failure + logout + sudo_usage +
               permission_change + account_created + account_deleted +
               account_modified + unknown;
    }

References account_created, account_deleted, account_modified, login_failure, login_success, logout, permission_change, sudo_usage, and unknown.

Member Data Documentation

◆ account_created

uint64_t kcenon::monitoring::security_event_counts::account_created {0}

Account creation count.

Definition at line 98 of file security_collector.h.

98{0};

Referenced by get_count(), increment(), and total().

◆ account_deleted

uint64_t kcenon::monitoring::security_event_counts::account_deleted {0}

Account deletion count.

Definition at line 99 of file security_collector.h.

99{0};

Referenced by get_count(), increment(), and total().

◆ account_modified

uint64_t kcenon::monitoring::security_event_counts::account_modified {0}

Account modification count.

Definition at line 100 of file security_collector.h.

100{0};

Referenced by get_count(), increment(), and total().

◆ login_failure

uint64_t kcenon::monitoring::security_event_counts::login_failure {0}

Failed login count.

Definition at line 94 of file security_collector.h.

94{0};

Referenced by get_count(), increment(), and total().

◆ login_success

uint64_t kcenon::monitoring::security_event_counts::login_success {0}

Successful login count.

Definition at line 93 of file security_collector.h.

93{0};

Referenced by get_count(), increment(), and total().

◆ logout

uint64_t kcenon::monitoring::security_event_counts::logout {0}

Logout count.

Definition at line 95 of file security_collector.h.

95{0};

Referenced by get_count(), increment(), and total().

◆ permission_change

uint64_t kcenon::monitoring::security_event_counts::permission_change {0}

Permission change count.

Definition at line 97 of file security_collector.h.

97{0};

Referenced by get_count(), increment(), and total().

◆ sudo_usage

uint64_t kcenon::monitoring::security_event_counts::sudo_usage {0}

Sudo/privilege escalation count.

Definition at line 96 of file security_collector.h.

96{0};

Referenced by get_count(), increment(), and total().

◆ unknown

uint64_t kcenon::monitoring::security_event_counts::unknown {0}

Unknown event count.

Definition at line 101 of file security_collector.h.

101{0};

Referenced by get_count(), increment(), and total().

The documentation for this struct was generated from the following file:

include/kcenon/monitoring/collectors/security_collector.h

Public Member Functions

Public Attributes

Detailed Description

Member Function Documentation

◆ get_count()

◆ increment()

◆ total()

Member Data Documentation

◆ account_created

◆ account_deleted

◆ account_modified

◆ login_failure

◆ login_success

◆ logout

◆ permission_change

◆ sudo_usage

◆ unknown