Snort mailing list archives
Re: OT- Can anyone recommend a log parser for cisco?
From: James Hoagland <jim () SiliconDefense com>
Date: Thu, 10 Apr 2003 07:08:54 -0700
At 5:10 PM -0400 4/9/03, David Gianndrea wrote:
It has become painfully apparent that I need some sort of log parser for syslog messages. Im looking for an open source log manager / reporter that will help me do a better job of watching messages coming from our firewall with out having to spend weeks learning to tweaking it. Maybe with a web front end, something along the lines of Acid would be cool! Anybody know of one?
You could write an input module for SnortSnarf and present your messages in its browsable HTML output (which is along the lines of Acid). Suggest use of Parse::Syslog from CPAN to aid in parsing the file.
Hope this helps, Jim -- |* Jim Hoagland, Associate Researcher, Silicon Defense *| |* --- Silicon Defense: The Cyberwar Defense Company --- *| |* jim () SiliconDefense com, http://www.silicondefense.com/ *| |* Voice: (530) 756-7317 Fax: (530) 756-7297 *| -------------------------------------------------------This SF.net email is sponsored by: Etnus, makers of TotalView, The debugger for complex code. Debugging C/C++ programs can leave you feeling lost and disoriented. TotalView can help you find your way. Available on major UNIX and Linux platforms. Try it free. www.etnus.com
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- OT- Can anyone recommend a log parser for cisco? David Gianndrea (Apr 09)
- Re: OT- Can anyone recommend a log parser for cisco? James Hoagland (Apr 10)
- Re: OT- Can anyone recommend a log parser for cisco? Erek Adams (Apr 10)