The Visual Audit Browser (VAB) Toolkit is a set of tools which facilitate the inspection of audit log data, the record of system events made by an operating system, i.e., by Sun's Basic Security Module (BSM). The analysis of this voluminous amount of data produced is not effective when done with audit log presented in a purely textual form. The VAB tools provide an better way of inspecting audit data. The current tools include programs to view BSM audit logs in a graph, in a animated sequence of graphs, in hypertext format, and in a graph showing just a portion of the log.
A paper of the VAB Toolkit has been submitted to the January 1996 Usenix Technical Conference. [Postscript] [Abstract]