Security Basics mailing list archives

RE: Event Log Monitor

From: "Darren Mackay" <darren () darrenmackay com>
Date: Wed, 18 Aug 2004 22:25:09 +1000

Hi,

assuming your noc has a syslog server for tracing / reporting /
notification of syslg events:

https://engineering.purdue.edu/ECN/Resources/Documents/UNIX/evtsys/

http://www.intersectalliance.com/projects/SnareWindows/index.html

enjoy


---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.securityfocus.com/sponsor/InfoSecInstitute_security-basics_040817
----------------------------------------------------------------------------

Current thread:

Event Log Monitor Charles J. Hammett Jr. (Aug 17)
- RE: Event Log Monitor dave kleiman (Aug 18)
- RE: Event Log Monitor jayesh (Aug 19)
- Re: Event Log Monitor Sean Waddell (Aug 23)
- <Possible follow-ups>
- RE: Event Log Monitor Depp, Dennis M. (Aug 18)
- RE: Event Log Monitor Darren Mackay (Aug 19)
- RE: Event Log Monitor Ross, George (Aug 19)
  - RE: Event Log Monitor Dinis Cruz (Aug 23)
    - AW: Event Log Monitor Freddie Soerensen (Aug 24)
- Re: Event Log Monitor patrick (Aug 19)
- Event log Monitor Charles J. Hammett Jr. (Aug 19)
- RE: Event Log Monitor Ross, George (Aug 23)
- RE: Event log Monitor Depp, Dennis M. (Aug 23)
  - RE: Event log Monitor Charles J. Hammett Jr. (Aug 24)
- Re: Event log Monitor Robert Mezzone (Aug 23)
- Re: RE: Event Log Monitor mark-g (Aug 24)