[Snort-users] Question about payload

Dmitry Korzhevin dmitry.korzhevin at ...15907...
Mon Apr 1 04:42:54 EDT 2013


    ,,_     -*> Snort! <*-
   o"  )~   Version 2.9.4 GRE (Build 40)
    ''''    By Martin Roesch & The Snort Team: 
http://www.snort.org/snort/snort-team
            Copyright (C) 1998-2012 Sourcefire, Inc., et al.
            Using libpcap version 1.3.0
            Using PCRE version: 8.02 2010-03-19
            Using ZLIB version: 1.2.3.4

Yes, i'm using barnyard2 to write snort events to database. Just wonder, 
how get readable snort alert events from mysql database.

01.04.2013 04:40, waldo kitty пишет:
> On 3/31/2013 19:22, Dmitry Korzhevin wrote:
>> Hi,
>>
>> Please tell, where is snort save payload information in database snort, and how
>> to get info (for example: time and date + payload)
>
> what version of snort? database writing has been removed from snort and one is
> required to use an intermediate tool to process the unified logs and that tool
> will then populate the database...
>
>
> ------------------------------------------------------------------------------
> Own the Future-Intel® Level Up Game Demo Contest 2013
> Rise to greatness in Intel's independent game demo contest.
> Compete for recognition, cash, and the chance to get your game
> on Steam. $5K grand prize plus 10 genre and skill prizes.
> Submit your demo by 6/6/13. http://p.sf.net/sfu/intel_levelupd2d
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users
>
> Please visit http://blog.snort.org to stay current on all the latest Snort news!
>

Best Regards,
Dmitry

---
Dmitry KORZHEVIN
System Administrator
STIDIA S.A. - Luxembourg

e: dmitry.korzhevin at ...15907...
m: +38 093 874 5453
w: http://www.stidia.com

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4488 bytes
Desc: ���������������������������������� �������������� S/MIME
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20130401/42e0bbf5/attachment.bin>


More information about the Snort-users mailing list