Audit information processing method and electronic equipment

The embodiment of the invention provides an auditing information processing method and electronic equipment. The auditing information processing method comprises the steps: obtaining event record information for calling a system calling function; performing first filtering processing on the event record information based on a preset first processing strategy to obtain first event record information; performing vulnerability analysis processing on the first event record information to obtain an analysis result meeting a threat condition; determining a second processing strategy based on the analysis result; and performing second filtering processing on the event record information based on the second processing strategy to obtain second event record information. According to the auditing information processing method, information auditing can be rapidly and efficiently carried out, and the auditing processing load of the system is effectively reduced. 本发明实施例提供了一种审计信息处理方法及电子设备，包括：获得调用系统调用函数的事件记录信息；对所述事件记录信息基于预设