Security Basics mailing list archives

Re: RE: FW/IPS log correlation software

From: ratnachkumar () gmail com
Date: 19 May 2008 16:41:11 -0000

You can use Log parser from Microsoft to correlate the event and identify suspicious events.

This is a manual job. You have to write intelligent queries to detect events of your interest
or
you can buy some commercial tool to do it for you

Current thread:

RE: FW/IPS log correlation software Vijaya Baskar, A (TATA BP Solar) (May 18)
- RE: FW/IPS log correlation software Daniel I. Didier (May 19)
- <Possible follow-ups>
- Re: RE: FW/IPS log correlation software ratnachkumar (May 19)