Documentation
¶
Index ¶
- type FimEvent
- type FimEventImpl
- func (f *FimEventImpl) GetAgentId() string
- func (f *FimEventImpl) GetEventType() FimEventType
- func (f *FimEventImpl) GetFileCtime() time.Time
- func (f *FimEventImpl) GetFileDevice() uint64
- func (f *FimEventImpl) GetFileHash() string
- func (f *FimEventImpl) GetFileInode() uint64
- func (f *FimEventImpl) GetFileMtime() time.Time
- func (f *FimEventImpl) GetFileSize() int64
- func (f *FimEventImpl) GetGid() uint32
- func (f *FimEventImpl) GetHostName() string
- func (f *FimEventImpl) GetMode() uint32
- func (f *FimEventImpl) GetPath() string
- func (f *FimEventImpl) GetProcessArgs() []string
- func (f *FimEventImpl) GetProcessName() string
- func (f *FimEventImpl) GetProcessPid() uint32
- func (f *FimEventImpl) GetTimestamp() time.Time
- func (f *FimEventImpl) GetUid() uint32
- type FimEventType
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type FimEvent ¶
type FimEvent interface {
GetPath() string
GetEventType() FimEventType
GetFileHash() string
GetTimestamp() time.Time
GetUid() uint32
GetGid() uint32
GetMode() uint32
// Enhanced getter methods for new fields
GetFileSize() int64
GetFileInode() uint64
GetFileDevice() uint64
GetFileMtime() time.Time
GetFileCtime() time.Time
GetProcessPid() uint32
GetProcessName() string
GetProcessArgs() []string
GetHostName() string
GetAgentId() string
}
type FimEventImpl ¶
type FimEventImpl struct {
Path string
EventType FimEventType
FileHash string
Timestamp time.Time
Uid uint32
Gid uint32
Mode uint32
// Enhanced fields for richer event context
FileSize int64
FileInode uint64
FileDevice uint64
FileMtime time.Time
FileCtime time.Time
ProcessPid uint32
ProcessName string
ProcessArgs []string
HostName string
AgentId string
}
func (*FimEventImpl) GetAgentId ¶
func (f *FimEventImpl) GetAgentId() string
func (*FimEventImpl) GetEventType ¶
func (f *FimEventImpl) GetEventType() FimEventType
func (*FimEventImpl) GetFileCtime ¶
func (f *FimEventImpl) GetFileCtime() time.Time
func (*FimEventImpl) GetFileDevice ¶
func (f *FimEventImpl) GetFileDevice() uint64
func (*FimEventImpl) GetFileHash ¶
func (f *FimEventImpl) GetFileHash() string
func (*FimEventImpl) GetFileInode ¶
func (f *FimEventImpl) GetFileInode() uint64
func (*FimEventImpl) GetFileMtime ¶
func (f *FimEventImpl) GetFileMtime() time.Time
func (*FimEventImpl) GetFileSize ¶
func (f *FimEventImpl) GetFileSize() int64
Enhanced getter methods for new fields
func (*FimEventImpl) GetGid ¶
func (f *FimEventImpl) GetGid() uint32
func (*FimEventImpl) GetHostName ¶
func (f *FimEventImpl) GetHostName() string
func (*FimEventImpl) GetMode ¶
func (f *FimEventImpl) GetMode() uint32
func (*FimEventImpl) GetPath ¶
func (f *FimEventImpl) GetPath() string
func (*FimEventImpl) GetProcessArgs ¶
func (f *FimEventImpl) GetProcessArgs() []string
func (*FimEventImpl) GetProcessName ¶
func (f *FimEventImpl) GetProcessName() string
func (*FimEventImpl) GetProcessPid ¶
func (f *FimEventImpl) GetProcessPid() uint32
func (*FimEventImpl) GetTimestamp ¶
func (f *FimEventImpl) GetTimestamp() time.Time
func (*FimEventImpl) GetUid ¶
func (f *FimEventImpl) GetUid() uint32
type FimEventType ¶
type FimEventType string
const ( FimEventTypeCreate FimEventType = "create" FimEventTypeChange FimEventType = "change" FimEventTypeRemove FimEventType = "remove" FimEventTypeRename FimEventType = "rename" FimEventTypeChmod FimEventType = "chmod" FimEventTypeMove FimEventType = "move" )
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.