RE: Log reader

[Dave Kleiman - Mobile <dave () davekleiman com>]

That is funny, I am sitting here in a hotel in Sarasota preparing my Log File Forensics with Log Parser class for the 
FACCI conference tomorrow.
http://www.facci.org/schedule.htm

You can go to my website listed below, half way down there is a Training Files link, and download a similar class 
CyberCrime_Summit_2006_Logfileforensics.  It includes Log Parser, custom scripts and toolbox for Log Parser.

You should get the Syngress Book LogParser Toolkit, a lot of good stuff.


Respectfully,

Dave Kleiman - http://www.ComputerForensicExaminer.com

> From Dave's Phone! - 561.310.8801


-----Original Message-----
From: Joe Klein <Josephk () mischoice com>
Sent: Friday, July 25, 2008 15:38
To: amatachick () gmail com; security-basics () securityfocus com
Subject: RE: Log reader

I am using Microsoft's Log Parser. It's a pretty nice parser. It's not a
'out of the box' solution, but it is very configurable.

http://www.microsoft.com/downloads/details.aspx?FamilyID=890cd06b-abf8-4c25-
91b2-f8d975cf8c07

There is a decent book out on it called Log Parser Toolkit (ISBN:
978-1-932266-52-8), written by the same person who authored the software.

-joe

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of amatachick () gmail com
Sent: Thursday, July 24, 2008 4:02 AM
To: security-basics () securityfocus com
Subject: Log reader

Our firewall puts out these massive text files which I have to peruse on a
daily basis. I was hoping if someone might know of a good, free tool which
can help filter a large log file like this. Your input is appreciated.

Thanks,

Amy