Snort mailing list archives

Re: OT- Can anyone recommend a log parser for cisco?

From: James Hoagland <jim () SiliconDefense com>
Date: Thu, 10 Apr 2003 07:08:54 -0700

At 5:10 PM -0400 4/9/03, David Gianndrea wrote:

It has become painfully apparent that I need some sort
of log parser for  syslog messages. Im looking for
an open source log manager / reporter that will help me
do a better job of watching messages coming from our
firewall with out having to spend weeks learning
to tweaking it. Maybe with a web front end, something
along the lines of Acid would be cool!

Anybody know of one?

You could write an input module for SnortSnarf and present yourmessages in its browsable HTML output (which is along the lines ofAcid). Suggest use of Parse::Syslog from CPAN to aid in parsing thefile.


Hope this helps,

  Jim
--
|*     Jim Hoagland, Associate Researcher, Silicon Defense     *|
|*    --- Silicon Defense: The Cyberwar Defense Company ---    *|
|*   jim () SiliconDefense com, http://www.silicondefense.com/    *|
|*  Voice: (530) 756-7317                 Fax: (530) 756-7297  *|


-------------------------------------------------------

This SF.net email is sponsored by: Etnus, makers of TotalView, The debuggerfor complex code. Debugging C/C++ programs can leave you feeling lost anddisoriented. TotalView can help you find your way. Available on major UNIXand Linux platforms. Try it free. www.etnus.com

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

OT- Can anyone recommend a log parser for cisco? David Gianndrea (Apr 09)
- Re: OT- Can anyone recommend a log parser for cisco? James Hoagland (Apr 10)
- Re: OT- Can anyone recommend a log parser for cisco? Erek Adams (Apr 10)