Events
Important actions taken in ESET Endpoint Security Web interface, failed login attempts to Web interface, ESET Endpoint Security related commands executed via Terminal and some more information is logged in the Events screen.
Each recorded action includes the following information: time the event occured, component (if available), event, user
Display events via Terminal
To display the content of Events screen via a Terminal window, use the lslog command line tool.
Syntax: /Applications/ESET\ Endpoint\ Security.app/Contents/MacOS/lslog [OPTIONS]
Options—short form |
Options—long form |
Description |
---|---|---|
-f |
--follow |
Wait for new logs and append them to the output |
-o |
--optimize |
Optimize logs |
-c |
--csv |
Display logs in CSV format |
-e |
--events |
List event logs |
-u |
--urls |
List URL log records |
-n |
--sent-files |
Display a list of files submitted for analysis |
-s |
--scans |
List On-demand scan logs |
|
--with-log-name |
Display the Log name column in addition |
|
--ods-details=log-name |
Display details of an On-demand scan identified by Log name |
|
--ods-events=log-name |
Print found detections and files that were not scanned during a particular On-demand scan identified by Log name. |
|
--ods-detections=log-name |
Display detections of an On-demand scan identified by Log name |
|
--ods-notscanned=log-name |
Display not scanned items of an On-demand scan identified by Log name |
-d |
--detections |
List Detection Log records |
-b |
--blocked-files |
List blocked files log |
-t |
--network |
List Network Access Protection log records |
|
--va-scans |
List Vulnerability Assessment scan logs |
Examples
Display all event logs:
/Applications/ESET\ Endpoint\ Security.app/Contents/MacOS/lslog -e |
Save all event logs in CSV format to a file in the current user's Documents directory:
/Applications/ESET\ Endpoint\ Security.app/Contents/MacOS/lslog -ec > /Users/$USER/Desktop/eventlogs.csv |