This is a parser for the FreeBSD audit file format (based on Sun's Basic Security Module (BSM) file format).
It can be installed by running go install github.com/tpltnt/go-bsm
.
This tool uses a dirty handwritten parser for binary files. This was done because yacc wasn't available as a tool for Go (as of beginning of 2018) and ANTLv4 requires Java.
- parse all tokens
- rewrite using parser combinators