Event Types
Types used by messages to deliver details specific to different kinds of Endpoint Security events.
Overview
The types in this section contain details of each event that an Endpoint Security message can contain. While the es_message_t type itself is generic, the members of its event union contain specific event types.
For example, when the message’s event_type is ES_EVENT_TYPE_NOTIFY_FORK, you access the event’s fork member, whose type is es_event_fork_t. This type has properties specific to process-forking events, such as the child process that resulted from the fork operation.
Topics
File-System Event Types
es_file_tes_event_access_tes_event_clone_tes_event_copyfile_tes_event_create_tes_event_dup_tes_event_fcntl_tes_event_open_tes_event_close_tes_event_rename_tes_event_truncate_tes_event_exchangedata_tes_event_write_tes_event_lookup_tes_event_searchfs_t
File Metadata Event Types
es_event_deleteextattr_tes_event_fsgetpath_tes_event_getattrlist_tes_event_getextattr_tes_event_listextattr_tes_event_readdir_tes_event_setacl_tes_event_setattrlist_tes_event_setextattr_tes_event_setflags_tes_event_setmode_tes_event_setowner_tes_event_stat_tes_event_utimes_t
File Provider Event Types
Link Event Types
File System Mounting Event Types
Memory Mapping Event Types
Process Event Types
es_event_chdir_tes_event_chroot_tes_event_exec_tes_event_fork_tes_event_proc_check_tes_event_signal_tes_event_exit_t
Process Event Helper Functions
es_exec_arg(_:_:)es_exec_arg_count(_:)es_exec_env(_:_:)es_exec_env_count(_:)es_exec_fd(_:_:)es_exec_fd_count(_:)es_fd_t
Interprocess Events
Task Port Event Types
User and Group ID Types
es_event_setuid_tes_event_setgid_tes_event_seteuid_tes_event_setegid_tes_event_setreuid_tes_event_setregid_t