Software to Correlate traffic from various devices

[Aseem Kumar <kumaraseem () gmail com>]

Hi all,

I am looking for an application that will allow me to write logic to
correlate alerts that can be fed in the format of (device type,alarm
name(from snort ids specifically) severity level, source ip, source
port, destination ip, destination port, timestamp & event count) from
a csv file.
The application need not be too fancy GUI kind, but one with a simple
interface but allows me to write logics using complex combinations of
various fields in various stages.

I have a logging software that logs everything, but it correlation
part is not reliable. Is anyone aware of any such software. Also not
looking for very expensive software.


Thanks
Aseem

--
Love enables you to put your deepest feelings and fears in the palm of
your partner's hand, knowing they will be handled with care.

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------