[Snort-users] How to convert snort packets data in the mysql database in to sessions

Asad, Hafiz ul Hafiz-ul.Asad at ...17478...
Fri Feb 24 16:13:03 EST 2017


We know that snort generates alerts data that is stored by the tool barnyard2 in a mysql database. This data is stored in packets and I wonder, is there a way to convert these packets in to sessions? I am aware that there are tools that can get us sessions in a Pcap file; could they be used here for the same purpose?



More information about the Snort-users mailing list