LinuxCommandLibrary

aa-decode

Decode hex-encoded strings in AppArmor logs

TLDR

Decode a hex string

$ aa-decode [hexstring]
copy
Decode a log file
$ sudo aa-decode [logfile]
copy
Decode logs from stdin
$ sudo aa-decode - < [logfile]
copy
Pipe kernel logs through aa-decode
$ cat /var/log/kern.log | aa-decode
copy

SYNOPSIS

aa-decode [option] HEXSTRING_

DESCRIPTION

aa-decode decodes hexadecimal-encoded strings found in AppArmor log output. It processes audit logs from standard input and converts any hex-encoded AppArmor entries to human-readable format on standard output.
AppArmor encodes certain characters (like spaces and special characters) in hexadecimal format within log entries to prevent parsing issues. This utility converts those back to readable text.

PARAMETERS

--help

Displays usage information

CAVEATS

The utility only decodes hexadecimal strings in the specific format used by AppArmor logs. Other hex-encoded data may not be decoded correctly.

HISTORY

Part of the AppArmor utilities package for managing application security profiles on Linux systems.

SEE ALSO

aa-status(8), aa-notify(8), apparmor(7)

> TERMINAL_GEAR

Curated for the Linux community

Copied to clipboard

> TERMINAL_GEAR

Curated for the Linux community