Virus.Org IT Security News and Information Portal. We offer the latest IT security news, updates, product reviews, books, and articles for all you IT security professionals out there. Enter and get the best IT security information on the Internet.

 
. Welcome to the Virus.Org Mailing List Archive  
.
.


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]


RE: log analyser
.

  • To: <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]>
  • Subject: RE: log analyser
  • From: "John Lightfoot" <[EMAIL PROTECTED]>
  • Date: Mon, 1 Jun 2009 15:30:12 -0400
  • Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:from:to:references :in-reply-to:subject:date:message-id:mime-version:content-type :content-transfer-encoding:x-mailer:thread-index:content-language; bh=ySi/Pz1Nz0Ijf4gD5lLlF2voTbOYsUf3w3M2mMexKJs=; b=A80Tjxqh+YX0MHnmG1JWS0OR5DsbbMY5QpoMvrXU/uBWdvWOe47h4kBsV/byzzLwkr w3fl8Xmi0WRqNikC3T0O7gODDqFHxTl0QYRoB+F2gJf5a1+eCDYJlVIYVwkAGW+uyTJs Di2/Ap/Y/FHuMzU2v8JMmWtFHitn9sFZiE1fo=
  • In-reply-to: <[EMAIL PROTECTED]>
  • References: <[EMAIL PROTECTED]>
  • Thread-index: Acni1ClDCo73bTNRSWS4rJ76ECTu2QAGvBEQ
.
 
For Windows, log parser is a great analysis tool, although it's not really
designed for real-time monitoring.

http://www.microsoft.com/DownLoads/details.aspx?FamilyID=890cd06b-abf8-4c25-
91b2-f8d975cf8c07&displaylang=en 

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of [EMAIL PROTECTED]
Sent: Thursday, May 28, 2009 7:26 PM
To: [EMAIL PROTECTED]
Subject: log analyser

Hi,

can someone of you recommend a good enterprise log analyser solution? i have
to collect, corrolate and analyse about 1200 windows machines and 200 linux
boxes. i want to do this in real-time, trigger actions (like email
notification), make sense out of e.g. ten failed login attempts following
the one successful etc.

any hint would be helpful
thanks
andy

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means you
pass the exam. Gain a laser like insight into what is covered on the exam,
with zero fluff! 

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff! 

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------
 
.
.
 
Copyright (c) Virus.Org 1997-2006.
All Trademarks Acknowledged.
Please view our Terms and Conditions and our Privacy Policy.