Security Basics mailing list archives

RE: Any good log analysis/forensics tools?

From: "Andrew Williams" <Andrew () Syngress com>
Date: Thu, 7 Apr 2005 10:31:54 -0400

A good article on using MS Log Parser for forensic investigation:
http://www.securityfocus.com/infocus/1712

And, link to download Log Parser from MS:
http://www.microsoft.com/technet/scriptcenter/tools/logparser/default.ms
px

-Andrew

-----Original Message-----
From: Alvaro Prieto [mailto:alvaro () apg88 com] 
Sent: Wednesday, April 06, 2005 10:08 PM
To: ricci () cs ust hk
Cc: security-basics () securityfocus com
Subject: Re: Any good log analysis/forensics tools?

Hi,

You might find this link helpful.

http://www.securityfocus.com/infocus/1827

Alvaro

ricci wrote:

Hello All,

    I'm trying to test some good log analysis and forensics

tools, can you

give me some idea?

    1. Is there any recommended web log analysis tools? Is

there any tools

with forensics investigation and vulnerability

identification feature?


    2. Is there any recommended Lotus Notes log analysis tools?

    3. Any comment on OSSIM? Is OSSIM working well? What

kind of forensics

features it has provided?

    Thanks.

Ricci



-------------------------------------------------------------

----------

---- Earn your MS in Information Security ONLINE Organizations 
worldwide are in need of highly qualified information security 
professionals.  Norwich University is fulfilling this demand

with its

MS in Information Security offered online.  Recognized by

the NSA as an

academically excellent program, NU offers you the

opportunity to earn

your degree without disrupting your home or work life.

http://www.msia.norwich.edu/secfocus_en
-------------------------------------------------------------

----------

-----



--------------------------------------------------------------
-------------
Earn your MS in Information Security ONLINE Organizations 
worldwide are in need of highly qualified information 
security professionals.  Norwich University is fulfilling 
this demand with its MS in Information Security offered 
online.  Recognized by the NSA as an academically excellent 
program, NU offers you the opportunity to earn your degree 
without disrupting your home or work life.

http://www.msia.norwich.edu/secfocus_en
--------------------------------------------------------------
--------------


---------------------------------------------------------------------------
Earn your MS in Information Security ONLINE
Organizations worldwide are in need of highly qualified information security
professionals.  Norwich University is fulfilling this demand with its MS in
Information Security offered online.  Recognized by the NSA as an
academically excellent program, NU offers you the opportunity to earn your
degree without disrupting your home or work life.

http://www.msia.norwich.edu/secfocus_en
----------------------------------------------------------------------------

Current thread:

Any good log analysis/forensics tools? ricci (Apr 06)
- Re: Any good log analysis/forensics tools? Byron L. Sonne (Apr 07)
- Re: Any good log analysis/forensics tools? Ty Bodell (Apr 07)
- Re: Any good log analysis/forensics tools? Alvaro Prieto (Apr 07)
- <Possible follow-ups>
- RE: Any good log analysis/forensics tools? Andrew Williams (Apr 07)