AuditLogParser is a tool for parsing DSE audit.log files and formatting them into consumable JSON.
Download the latest release from the releases page and extract
the contents to a directory of your choice.
tar -C /path/to/bin -xzf auditlogparser_<version>_<os>_<arch>.tar.gz
Usage is pretty simple.
auditlogparser -file /path/to/audit.log
This will output the audit log in JSON format to stdout.
You can then use tools such as jq
to filter the output.
auditlogparser -file /path/to/audit.log | jq '. | select(.operation == "SELECT")'
Option | Description |
---|---|
-file | Path to the audit.log file to parse. |