Snort mailing list archives

Re: Reading to MySQL

From: Ryan <ryan () organizedvillainy com>
Date: Mon, 26 Oct 2015 13:07:51 -0500

Attached is a ruby script I wrote a while ago that watches your suricata
unified log and transmits it to syslog. You could easily manipulate this
into injecting into MySQL instead.

_R

On 10/26/15 1:00 PM, wkitty42 () windstream net wrote:

On 10/26/2015 12:22 PM, Adonis Okpidi wrote:

Please I was wondering what the process is to generate alerts to a MySQL database?

you have to configure snort to use unified logging as well as installing 
barnyard2 to read the unified log and emit it to the database...

Attachment: unified_watcher.rb
Description:

Attachment: signature.asc
Description: OpenPGP digital signature

------------------------------------------------------------------------------

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!

Current thread:

Reading to MySQL Adonis Okpidi (Oct 26)
- Re: Reading to MySQL wkitty42 (Oct 26)
  - Re: Reading to MySQL Ryan (Oct 26)
    - Re: Reading to MySQL Joel Esler (jesler) (Oct 26)