RE: log analyser

["John Lightfoot" <jlightfoot () gmail com>]

For Windows, log parser is a great analysis tool, although it's not really
designed for real-time monitoring.

http://www.microsoft.com/DownLoads/details.aspx?FamilyID=890cd06b-abf8-4c25-
91b2-f8d975cf8c07&displaylang=en 

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of sec () nd-f com
Sent: Thursday, May 28, 2009 7:26 PM
To: security-basics () securityfocus com
Subject: log analyser

Hi,

can someone of you recommend a good enterprise log analyser solution? i have
to collect, corrolate and analyse about 1200 windows machines and 200 linux
boxes. i want to do this in real-time, trigger actions (like email
notification), make sense out of e.g. ten failed login attempts following
the one successful etc.

any hint would be helpful
thanks
andy

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means you
pass the exam. Gain a laser like insight into what is covered on the exam,
with zero fluff! 

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most 
concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain 
a laser like insight into what is covered on the exam, with zero fluff! 

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------