Security Basics mailing list archives
RE: log analyser
From: "John Lightfoot" <jlightfoot () gmail com>
Date: Mon, 1 Jun 2009 15:30:12 -0400
For Windows, log parser is a great analysis tool, although it's not really designed for real-time monitoring. http://www.microsoft.com/DownLoads/details.aspx?FamilyID=890cd06b-abf8-4c25- 91b2-f8d975cf8c07&displaylang=en -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of sec () nd-f com Sent: Thursday, May 28, 2009 7:26 PM To: security-basics () securityfocus com Subject: log analyser Hi, can someone of you recommend a good enterprise log analyser solution? i have to collect, corrolate and analyse about 1200 windows machines and 200 linux boxes. i want to do this in real-time, trigger actions (like email notification), make sense out of e.g. ten failed login attempts following the one successful etc. any hint would be helpful thanks andy ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff! http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html ------------------------------------------------------------------------ ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff! http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html ------------------------------------------------------------------------
Current thread:
- log analyser sec (Jun 01)
- RE: log analyser Hindley Nick (Jun 01)
- RE: log analyser Todd Neal (Jun 01)
- Re: log analyser Abilash Praveen (Jun 01)
- Re: log analyser Jared Curtis (Jun 01)
- Re: log analyser giuseppe . fuggiano (Jun 01)
- RE: log analyser John Lightfoot (Jun 01)
- Re: log analyser aditya mukadam (Jun 02)
- RE: log analyser Amardeep Singh (Jun 03)
- RE: log analyser Tariq Naik (Jun 04)
- RE: log analyser Ramki B Ramakrishnan (Jun 08)
- Re: log analyser TT-SEC (Jun 12)
- Re: log analyser Richard Thomas (Jun 15)
- <Possible follow-ups>
- Re: Re: log analyser joe . zhuo (Jun 01)
- Re: log analyser dgonzalez . itpro (Jun 02)
- RE: log analyser Hindley Nick (Jun 01)