Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Log Analyzer Tool

From: Jeronimo Zucco <jczucco () ucs br>
Date: Thu, 08 Sep 2005 08:26:46 -0300
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

CRM114 - the Controllable Regex Mutilator

http://crm114.sourceforge.net

- --
Jeronimo Zucco
LPIC-1 Linux Professional Institute Certified
NĂșcleo de Processamento de Dados
Universidade de Caxias do Sul

"May the Source be with you." - An unknown jedi programmer.

http://jczucco.blogspot.com

Daniel Cid wrote:

Take a look at the OSSEC HIDS (www.ossec.net/hids).
It can read multiple log formats (unix syslog, snort,
PIX, etc, etc), analize them based on a set of
XML-based rules (in addition to the "FTS" and some
statistical analysis) and generate alerts or any 
other response.

some of the rules:

http://www.ossec.net/hids/rules/

Hope it helps...

--
Daniel B. Cid, CISSP
daniel.cid (at) @ gmail.com



--- bhawesh77 () yahoo com escreveu:

Hello List!
We currently review security logs from various
applications and systems. We are looking for a log
analyzer tool that can read the logs from various
formats and analyze the logs based on the criteria
we provide. We want this software to send alerts,
provide executive reports etc. Do you know of some
good security log analyzer tools. Any help would be
appreciated. 





__________________________________________________
Converse com seus amigos em tempo real com o Yahoo! Messenger 
http://br.download.yahoo.com/messenger/ 




-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDIB/2TCq0VJ4DIPwRAp03AJ9R5SKa1HBHXIbODLSWd2C3EtCSmgCfcdgp
UHu9VkjE9AJtQsQstOl64X0=
=1z99
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: