Google Git
Sign in
chromium / chromiumos / platform2 / refs/heads/main / . / secagentd
tree: 926d7a9e0a508d52d86150047a3ff59eb9ca9ee9 [path history] [tgz]
  1. bpf/
  2. init/
  3. minijail/
  4. proto/
  5. rsyslog/
  6. test/
  7. tmpfiles.d/
  8. agent_plugin.cc
  9. authentication_plugin.cc
  10. batch_sender.h
  11. bpf_skeleton_wrappers.h
  12. bpf_skeletons.cc
  13. BUILD.gn
  14. common.cc
  15. common.h
  16. daemon.cc
  17. daemon.h
  18. device_user.cc
  19. device_user.h
  20. DIR_METADATA
  21. factories.cc
  22. main.cc
  23. message_sender.cc
  24. message_sender.h
  25. metrics_sender.cc
  26. metrics_sender.h
  27. network_plugin.cc
  28. OWNERS
  29. platform.cc
  30. platform.h
  31. plugins.h
  32. policies_features_broker.cc
  33. policies_features_broker.h
  34. process_cache.cc
  35. process_cache.h
  36. process_plugin.cc
  37. README.md
  38. secagent.cc
  39. secagent.h
secagentd/README.md

Secagentd

Overview

Secagentd is a daemon responsible for detecting and reporting security related events through ERP (Encrypted Reporting Pipeline) for forensic analysis.

It only works on Linux Kernel >= 5.10, in which the Berkeley Packet Filter syscalls are available.

Logging

Secagentd logs are located in /var/log/secagentd.log.