[Snort-users] Re: Log analysis without ACID
Kreimendahl, Chad J
Chad.Kreimendahl at ...4716...
Thu Apr 29 08:17:06 EDT 2004
There are a few options out there... I think Demarc is most well
known... The alternative is to store your logs in a database and create
your own reports.
From: Frank Barton [mailto:pauling at ...7195...]
Sent: Thursday, April 29, 2004 7:07 AM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] Re: Log analysis without ACID
Personaly, I'm looking for a basic summary of
a)a basic list of there were N hits of type X (sorted by i) severity and
ii) number of occurances
b)Number of Hits per IP address
> Message: 1
> Date: Tue, 27 Apr 2004 16:33:59 -0500
> From: Michael Sconzo <msconzo at ...5072...>
> To: Michael Steele <michaels at ...9077...>
> Cc: snort-users at lists.sourceforge.net
> Subject: Re: [Snort-users] Log analysis without ACID
> On Tue, Apr 27, 2004 at 12:58:11PM -0700, Michael Steele wrote:
> > ACID does not generate report logs.
> > I have yet to find one. It would be nice to find one that can
> > weekly, monthly and yearly reports from the Snort log.
> What kind of information are you looking for in the report... ?
More information about the Snort-users