aa-decode

Decode a hex string

$ aa-decode [hexstring]

$ sudo aa-decode [logfile]

$ sudo aa-decode - < [logfile]

$ cat /var/log/kern.log | aa-decode

aa-decode [option] HEXSTRING_

aa-decode decodes hexadecimal-encoded strings found in AppArmor log output. It processes audit logs from standard input and converts any hex-encoded AppArmor entries to human-readable format on standard output.
AppArmor encodes certain characters (like spaces and special characters) in hexadecimal format within log entries to prevent parsing issues. This utility converts those back to readable text.

--help

Displays usage information

The utility only decodes hexadecimal strings in the specific format used by AppArmor logs. Other hex-encoded data may not be decoded correctly.

Part of the AppArmor utilities package for managing application security profiles on Linux systems.

aa-status(8), aa-notify(8), apparmor(7)