Penetration Testing mailing list archives
Re: Auditing / Logging
From: Peter Hsu <phsu () pacbell net>
Date: Mon, 12 Jan 2004 14:32:47 -0500
n30 wrote:
Folks, What software do you recommend for auditing / logging while performing pen-test assessment. I am interested in both network and application level.logging. Thanks -N --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Pursecure (www.puresecure.com) is a pretty nice tool for real-time monitoring of an attack. It's and IDS and gives you a nice idea of what someone who is running and IDS might see. It also (sort of) logs activity. It's a commercial front end to snort (available for free to personal users), so some of you may prefer to use use ACID, which may come with a license more to your liking. Of course, your can always use tcpdump (or your GUI equivalent) to capture the raw data.
P H --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Auditing / Logging n30 (Jan 12)
- Re: Auditing / Logging Peter Hsu (Jan 12)
- <Possible follow-ups>
- Re: Auditing / Logging Don Parker (Jan 12)
- Re: Auditing / Logging R. DuFresne (Jan 12)
- Re: Auditing / Logging Don Parker (Jan 12)
- Re: Auditing / Logging Frank Knobbe (Jan 13)
- RE: Auditing / Logging Rob Shein (Jan 18)
- RE: Auditing / Logging Steve Armstrong (Jan 20)
- RE: Auditing / Logging Rob Shein (Jan 20)
- Re: Auditing / Logging Travis Schack (Jan 12)
- Re: Auditing / Logging Steve Shah (Jan 13)
- Re: Auditing / Logging cdowns (Jan 13)
- Re: Auditing / Logging Steve Shah (Jan 13)